Kubewarden is a policy engine for Kubernetes. It helps with keeping your Kubernetes clusters secure 🔐 and compliant ✔.
Kubewarden policies can be written using regular programming languages or Domain Specific Languages (DSL).
Policies are compiled into WebAssembly modules that are then distributed using traditional container registries.
Check our first-stop kubewarden/community 👋 repository for information about the organization of the project.
Take a look at our documentation 📖 Stay up to date by reading our official blog 📣 and by following us on Bluesky or Mastodon.
Get in touch with us on Slack: join the kubewarden channel hosted by the official Kubernetes workspace 👨💻 💬 👩💻
Discover ready to use policies by visiting ArtifactHub 📦
Don't forget to take a look at kwctl, our handy multi-purpose tool for managing policies 🛠️ 🧰
Interested in writing a new policy?
Kubewarden allows you to write policies using a variety of programming languages, including Rust, Go, Rego, CEL and others.
These are some useful resources to get you started:
- Step-by-step tutorials inside of our documentation 📖
- Policy SDK: overview of the Policy SDKs available, and their maturity level 📚
- Policy templates: boilerplate code to help you get started 🚀
🏷️Use these tags to find repositories over all GitHub 🗺️ 🌌
| Purpose | Tag |
|---|---|
| Policy Template | kubewarden-policy-template |
| Policy | kubewarden-policy |
| Policy SDK | kubewarden-policy-sdk |
That's fantastic news! 🥳
Check our general CONTRIBUTING.md docs.
Quick links to "core" projects:
| Project | Scope | Language |
|---|---|---|
kubewarden-controller |
Kubernetes integration point | Go |
policy-server |
Run Kubewarden policies | Rust |
kwctl |
Kubewarden policy multi-purpose cli tool | Rust |
