Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/datreeio/datree

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
https://github.com/datreeio/datree

admission-webhook best-practices cli datree devops guardrail kubernetes policy policy-management security static-code-analysis

Last synced: about 2 months ago
JSON representation

Host: GitHub
URL: https://github.com/datreeio/datree
Owner: datreeio
License: apache-2.0
Created: 2021-04-14T11:44:56.000Z (over 3 years ago)
Default Branch: main
Last Pushed: 2023-10-18T15:48:24.000Z (about 1 year ago)
Last Synced: 2024-04-14T01:00:38.981Z (8 months ago)
Topics: admission-webhook, best-practices, cli, datree, devops, guardrail, kubernetes, policy, policy-management, security, static-code-analysis
Language: Go
Homepage: https://datree.io
Size: 8.9 MB
Stars: 6,405
Watchers: 38
Forks: 358
Open Issues: 27
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE.md
- Codeowners: CODEOWNERS

Awesome Lists containing this project

awesome-containerized-security - datree
awesome-k8s - Datree
awesome-k8s-resources - Datree - Datree is a CLI tool that supports Kubernetes admins in their roles by preventing developers from making errors in Kubernetes configurations that can cause clusters to fail in production. (Tools and Libraries / Security and Compliance)
awesomeness - Datree - Datree is a CLI tool that supports Kubernetes admins in their roles by preventing developers from making errors in Kubernetes configurations. (Containers / Kubernetes)
awesome-repositories - datreeio/datree - Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our do (Go)

README

datree=github

Explore the docs »

# Datree [DEPRECATED]

[Datree](https://www.datree.io/) (pronounced `/da-tree/`) was built to secure Kubernetes workloads by blocking the deployment of misconfigured resources. **Since July 2023, the commercial company that supports and actively maintains this project has been closed.**

## Migrating to the (fully) open-source version of Datree

For existing users, it is still possible to run Datree as a standalone: https://hub.datree.io/cli/offline-mode

## What will not be available anymore

All the archived open source repositories under datreeio org will no longer be maintained and accept any new code changes, including any security patches.
In addition, the following key capabilities will not longer be available anymore:
* Centralized policy registry
* Automatic Kubernetes schema validation
* Access to the dashboard and all of its components (e.g. activity-log page, token management, etc.)

## ⚙️ How it works

Datree scans Kubernetes resources against a centrally managed policy, and blocks those that violate your desired policies.

Datree comes with over 100 rules covering various use-cases, such as workload security, high availability, ArgoCD best practices, NSA hardening guide, and [many more](https://hub.datree.io/built-in-rules).

In addition to our built-in rules, you can write [any custom rule you wish](https://hub.datree.io/custom-rules-overview) and then run it against your Kubernetes configurations to check for rule violations. Custom rules can be written in [JSON schema](https://hub.datree.io/custom-rules/custom-rules-overview) or in [Rego](https://hub.datree.io/custom-rules/rego-support).

## Contributing

We want to thank our contributors for helping us build Datree ❤️

[![Contributors](https://contrib.rocks/image?repo=datreeio/datree)](https://github.com/datreeio/datree/graphs/contributors)