Open Policy Agent (OPA) is an open source, general-purpose policy engine.
-
Updated
Nov 24, 2024 - Go
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
What is OPA
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
Meshery, the cloud native manager
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
🐊 Gatekeeper - Policy Controller for Kubernetes
Cloud-native authorization for modern applications and APIs
A curated list of OPA related tools, frameworks and articles
📚 The OPA Gatekeeper policy library
A policy management tool for interacting with Gatekeeper
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
A plugin to enforce OPA policies with Envoy
S3 Reverse Proxy with GET, PUT and DELETE methods and authentication (OpenID Connect and Basic Auth)
Open source compliance tool for development platforms.
An OpenID / Proxy service
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
A set of curated exercises to help you prepare for the CKS exam
Sidecar for managing OPA instances in Kubernetes.
Notice: Postee is no longer under active development or maintenance.
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.