Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)

Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA/BeyondCorp architecture, API/AI gateway, a PaaS, an infrastructure for MCP & A2A architectures or even as an ngrok-alternative and a homelab infrastructure.

Automate Kubernetes Configuration Editing

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0

PacBot (Policy as Code Bot)

A curated list of OPA related tools, frameworks and articles

A data standard to enable right-of-way regulation, digital policy, geofencing, and two-way communication between mobility companies and public agencies worldwide.

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @jesseloudon

Next Generation Software Composition Analysis (SCA) with Malicious Package Detection, Code Context & Policy as Code

Regal is a linter and language server for Rego, bringing your policy development experience to the next level!

An open source, cloud-native security to protect everything from build to runtime

IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.

Manage admission policies in your Kubernetes cluster with ease

Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.

Style guide for Rego

A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.

A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...