Cluster Policy Report provider

[brandtkeller]

As enforcement technologies are utilized to require compliance of a given security/governance practice - Lula is well positioned to map those policies (say in technologies in kubernetes such as policy enforcement admission controllers) to requirements against a given standards catalog as supporting evidence.

This establishes a dependency on access to specific references of information - which is acceptable for known systems.

Consider implementation of a provider that can reference the proposed policy report in a given environment for mapping as evidence to a requirement.