opa
opa copied to clipboard
open-policy-agent
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
## What is the underlying problem you're trying to solve? The current version of `crypto.x509.parse_and_verify_certificates` builtin does not provide a way to check against which key usage the certificate is...
I am attempting to pull an OCI policy bundle from AWS' ECR service. When the request for the blob is made, - OPA: 0.61.0 - AWS' ECR service returns a...
When OPA builds a bundle, the Rego version (0.x or 1.0) should be included as a manifest attribute. When the version of the contained Rego is advertised by the bundle...
Metadata annotations provides many benefits for separating a policy project's metadata from its policy logic. This separation however comes with a cost, as we'll need to duplicate parts of metadata...
## Short description We moved to work with the bundle option on our rego project and had to change the tests to support it, unfortunately, our coverage flow is now...
## Short description We have a rego policy that iterates over a list of values and checks for each value to match an accepted state. Even after finding a successful...
## What is the underlying problem you're trying to solve? I have an OPA policy that applies a per-item policy to a large collection of input. What I would like...
BLUF: We are looking to add the ability to add labels to a decision log from within policy, so that we can filter and audit those decisions to be reported...
This was reported as a side-effect in #6433 but this is actually the main issue, so I'll close that in favor if this one. We _really_ ought to look into...
## Short description I've labelled this as a bug report, but it's also a request for clarification about when and how OPA inlines policy functions. I'm using OPA v0.60.0, and...
Metadata
Owner
Metadata
Open Policy Agent (OPA) is an open source, general-purpose policy engine.