Conference:  KubeCon + CloudNativeCon Europe 2023

Authors: Rita Zhang, Charlie Egan, John Reese

2023-04-21

Download the code ahead of time. DCO Required.The OPA projects have the goal of standardizing policy across the stack. This is only possible with a large community of users and contributors using the projects in a variety of use cases. We hope that by making the maintainers of the main OPA contact points available (OPA, Gatekeeper and conftest) in a ContribFest session that we will attract those interested in taking the first step to contributing and be effective in helping them do so.This Contribfest session is designed to provide projects with the space and resources to tackle outstanding technical debt, security issues, or outstanding impactful feature requests. They are intended to provide a place for maintainers to meet contributors and potential contributors and work together on solving a problem.

Conference:  KubeCon + CloudNativeCon Europe 2023

Authors: Jeremy Rickard

2023-04-20

The presentation discusses the challenges of producing software bills of materials (S-BOMs) and the use of gatekeeper and external data to enforce policies in Kubernetes clusters.

• Producing S-BOMs for Windows is a complex task that requires new tools and frameworks.
• Automation is necessary to make S-BOMs useful and enforce policies in clusters.
• Gatekeeper, based on Open Policy Agent, can be used with external data providers to enforce policies in Kubernetes clusters.
• OCI 1.1's refers API allows for the association of S-BOMs and signatures with images in registries.

Conference:  KubeCon + CloudNativeCon North America 2022

Authors: Peter O'Neill

2022-10-28

Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.

Conference:  KubeCon + CloudNativeCon Europe 2022

Authors: Anders Eknert, Will Beason

2022-05-18

Gatekeeper is a popular open-source tool for Kubernetes that enforces policies on resources in a cluster. The tool has undergone significant improvements, including a reduction in memory usage and the addition of external data and Gator CLI features.

• Gatekeeper is an open-source tool for Kubernetes that enforces policies on resources in a cluster
• Significant improvements have been made to Gatekeeper, including a 20x reduction in memory usage
• New features include external data and Gator CLI
• Gatekeeper is commonly used in service meshes like Istio