K8s Security Playground on kind

Features

About Pod

Pod Security

Pod Security is verified by Conftest in CI, and by Gatekeeper in the cluster.
See this repository for policy details.

Private Registry

Application images are managed by DockerHub's private repository.

About Secret

Certificate Management

Certificates are managed by cert-manager.

Secret Management

Secrets are managed by AWS Secret Manager, and injected by External Secrets Operator.

About Network

Network Policy

Global network policy is managed by Calico.

TLS

TLS termination is managed by Ingress NGINX.
mTLS is managed by Linkerd.

Traffic Control

Traffic control is managed by Linkerd.

About Auth

Authn and Authz

Authentication is enabled with X509 Client Certs.
RBAC authorization is also enabled.

Name		Name	Last commit message	Last commit date
Latest commit History 687 Commits
.github/workflows		.github/workflows
cmd/e2e		cmd/e2e
internal/e2e		internal/e2e
k8s		k8s
kind		kind
policy		policy
script		script
.editorconfig		.editorconfig
.gitattributes		.gitattributes
.gitignore		.gitignore
.yamllint.yaml		.yamllint.yaml
README.md		README.md
aqua.yaml		aqua.yaml
go.mod		go.mod
go.sum		go.sum
renovate.json5		renovate.json5

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

K8s Security Playground on kind

Features

About Pod

Pod Security

Private Registry

About Secret

Certificate Management

Secret Management

About Network

Network Policy

TLS

Traffic Control

About Auth

Authn and Authz

About

Contributors 2

Languages

YunosukeY/k8s-sec-playground

Folders and files

Latest commit

History

Repository files navigation

K8s Security Playground on kind

Features

About Pod

Pod Security

Private Registry

About Secret

Certificate Management

Secret Management

About Network

Network Policy

TLS

Traffic Control

About Auth

Authn and Authz

About

Resources

Stars

Watchers

Forks

Contributors 2

Languages