Jimmyblog.jimmytee.dev·Feb 7, 2024What is Policy as Code? 🤔In the modern world especially in this cloud native era, security is a mandatory and paramount task in any enterprise. Modern stacks such as Infrastructure-as-Code (IaC) bring us enormous benefits but at the same time it also introduces complexity an...Discuss·45 readspolicy as code
Jayakumar Sakthivelcloudwithjk.hashnode.dev·Sep 11, 2023Open Policy Agent (OPA) in Terraform (IaC)What is OPA? The Open Policy Agent (OPA) is a general-purpose policy engine that can assess Rego-expressed rules using information compiled in JSON format from various sources. A policy's enforcement may make use of an evaluation's findings. It offer...Discuss·1 like·53 readsTerraform
Engin Diriblog.ediri.io·Jul 30, 2023Kubernetes 1.26: Implementing Validating Admission Policies with PulumiTL;DR: Le code As usual, the link to the repo: https://github.com/dirien/quick-bites/tree/main/pulumi-validating-admission-policy Introduction In this blog article, we will discover how we can leverage Pulumi and the kubernetes provider to write an...Discuss·323 readsPulumi
Felixs Jiangselefra.hashnode.dev·Jul 9, 2023Introduction to EC2 instance metadata and risk preventionIntroduction Amazon EC2 Instance Metadata Service (IMDS) can help users obtain information about the instance itself. With IMDS, you can access various information about the instance, such as hostname, host IP, temporary access credentials, user dat...DiscussAWS
Felixs Jiangselefra.hashnode.dev·Jul 9, 2023Why Choose PGSQL as the Database for Resource StorageIntroduction In today's cloud computing environment, the demand for Policy-as-Code (PaC) tools is increasing to achieve tasks such as multi-cloud security, cost analysis, and organizational structure analysis. Selefra is an excellent PaC tool that us...DiscussDevops
Felixs Jiangselefra.hashnode.dev·Jul 4, 2023A Better Version Is Released - Selefra v0.2.3Date: June 30, 2023 We are excited to announce the release of Selefra v0.2.3, an open-source Policy-as-Code (PaC) product. This version introduces several bug fixes and enhancements to improve your experience with Selefra. Here are some key updates ...DiscussDevops
Felixs Jiangselefra.hashnode.dev·Jun 30, 2023How Selefra Combines GPT for Multi-Cloud Security ScanningIntroduction When combining GPT with risk scanning, Selefra adopts an innovative approach by integrating the powerful capabilities of PolicyAsCode and GPT to enhance the efficiency and accuracy of multi-cloud security compliance detection. While Poli...DiscussGPT 3
Felixs Jiangselefra.hashnode.dev·Jun 29, 2023Selefra-How to Read Code to Provide for Rule UseSelefra Code Reading In the previous article, we discussed how Selefra utilizes Provider to fetch data. Now, let's delve into the details of how Selefra reads YAML code. Code Block Reading Methods As a Policy-as-Code tool, Selefra plays a crucial rol...DiscussDevops
Felixs Jiangselefra.hashnode.dev·Jun 25, 2023How to spot and troubleshoot AWS S3 bucket object traversal issuesIntroduction The object traversal issue in AWS S3 buckets is a common problem that can be caused by two main reasons: incorrect ACL (Access Control List) configurations and incorrect policy configurations. In the following sections, we will provide a...Discuss·1 likeOpen Source
Felixs Jiangselefra.hashnode.dev·Jun 25, 2023Selefra-How Provider pulls data to SelefraIntroduce In Selefra, we use providers to collect data for Policy as Code. Providers are code snippets written based on the official API documentation provided by cloud services or Software as a Service (SaaS) providers. When using Selefra, users wri...DiscussAWS
