Policies Archives - Alexandre Vazquez

Extending Kyverno Policies: Creating Custom Rules for Enhanced Kubernetes Security

by Alexandre Vazquez
2024-11-042024-11-04

Extending Kyverno policies enables Kubernetes administrators to establish and enforce tailored security and operational practices within their clusters. By leveraging Kyverno’s capabilities in validation, mutation, and generation, you can automate compliance, streamline operations, and reinforce security standards seamlessly.

Kubernetes Policy Enforcement: Understanding Pod Security Admission (PSA)

by Alexandre Vazquez
2024-10-122024-10-12

Kubernetes has introduced the Pod Security Admission (PSA) mechanism to replace the deprecated Pod Security Policies (PSP). This article dives into the key capabilities Kubernetes offers for policy enforcement out of the box, particularly focusing on the PSA framework. We will explore the core Pod Security Standards, how PSA improves security practices, and how to configure policies using Kubernetes labels to apply them to different namespaces.