cyberneticlibrary

Enforce Kubernetes security policies

k8s-policyskillsetup L3★908

rohitg00/kubectl-mcp-server ↗

What it does

List, audit, and enforce Kubernetes security policies via Kyverno and Gatekeeper

Best for

Enforcing cluster-wide security rules (no privileged containers, require labels) without human review on every deployment.

Inputs

· Kyverno ClusterPolicy YAML
· Gatekeeper ConstraintTemplate YAML
· policy names for audit

Outputs

· Policy reports
· violation lists
· audit compliance status

Requires

· kubectl
· Kyverno or Gatekeeper installed on cluster

Preconditions

· Kubernetes cluster access
· Kyverno or Gatekeeper deployed

Failure modes

· Policy engine not installed
· violating resources not detected
· audit mode vs enforce mismatch
· policy syntax errors

Trust signals

· Apache 2.0 licensed
· priority-based workflow documented
· both Kyverno and OPA/Gatekeeper examples
· policy report tools included