Ansu Varghese aavarghese
aavarghese
/ policy.rego
Last active
April 21, 2021 19:55
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package kubernetes.admission | |
| # METADATA | |
| # scope: rule | |
| # schemas: | |
| # - input: schema["input"] | |
| # - input.request.object: schema.kubernetes["pod"] | |
| deny[msg] { | |
| input.request.kind.kinds == "Pod" # This line has a typo, should be input.request.kind.kind | |
| image := input.request.object.spec.containers[_].images # This line has a typo, should be input.request.object.spec.containers[_].image |
aavarghese
/ policy.rego
Created
April 15, 2021 05:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package policy | |
| import data.acl | |
| default allow = false | |
| # METADATA | |
| # scope: rule | |
| # schemas: | |
| # - input: schema["input"] |
NewerOlder