rego-policies icon indicating copy to clipboard operation
rego-policies copied to clipboard

Published 20 hours ago verified publisher icon redhat-cop

k8s: podsecuritypolicy via OPA

Open garethahealy opened this issue 3 years ago • 3 comments

Can we OPA'erize:

  • https://github.com/tektoncd/triggers/blob/master/config/101-podsecuritypolicy.yaml

This would probably need to be tested on vanilla k8s or on OCP with SCCs least enforcing, just to stop them interfering - needs a quick check.

garethahealy avatar Nov 13 '20 14:11 garethahealy

(just came to like 'OPA'erize' 🙈)

ckavili avatar Nov 13 '20 21:11 ckavili

@truncj ; hey, saw you mentioned you might pick this up on the CoP call agenda. Any progress / luck in getting time?

garethahealy avatar Apr 08 '21 13:04 garethahealy

@garethahealy yup! took another look at it today and made some progress. I'll push up the changes and ask for some feedback tomorrow.

truncj avatar Apr 08 '21 20:04 truncj

stale, didn't get any time/traction.

garethahealy avatar Nov 14 '23 10:11 garethahealy