-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature: Add support for Gatekeeper Add-On #937
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
looks good - we'll also want to add a PR to support the GitOps route here https://github.com/aws-samples/eks-blueprints-add-ons
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks great, thank you for the contribution!
Please don't forget to add this to the GitOps addons repo, you can see an example of how to add here aws-samples/eks-blueprints-add-ons#72
Co-authored-by: EC2 Default User <ec2-user@ip-172-31-31-192.ec2.internal> Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
What does this PR do?
Installs gatekeeper as a helm add-on
馃洃 Please open an issue first to discuss any significant work and flesh out details/direction - we would hate for your time to be wasted.
Consult the CONTRIBUTING guide for submitting pull-requests.
Motivation
gatekeeper is the new recommended was of introducing policy as code. Since PSP is getting deprecated eventually everyone will be using Gatekeeper for runtime security of the k8s cluster
More
pre-commit run -a
with this PRNote: Not all the PRs require a new example and/or doc page. In general:
docs/add-ons/*
is required for new a new addonFor Moderators
Additional Notes
Test example: https://www.eksworkshop.com/intermediate/310_opa_gatekeeper/policy-example-1/