Projects in Awesome Lists tagged with opa
A curated list of projects in awesome lists tagged with opa .
https://github.com/open-policy-agent/opa
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
authorization cloud-native compliance declarative doge json lolcat opa open-policy-agent policy
Last synced: 29 Jan 2026
https://github.com/meshery/meshery
Meshery, the cloud native manager
cloud-native cncf control-plane docker gitops golang gsoc hacktoberfest infrastructure-as-code internal-developer-platform kanvas kubernetes kubernetes-operator management-plane meshery opa platform-engineering reactjs visualization webassembly
Last synced: 07 Apr 2026
https://github.com/permitio/opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
authorization cedar hacktoberfest microservices opa opal open-policy-agent openfga policy policy-as-code pubsub realtime websocket
Last synced: 22 Jan 2026
https://github.com/open-policy-agent/gatekeeper
🐊 Policy Controller for Kubernetes
admission cncf gatekeeper hacktoberfest kubernetes mutation opa policy policy-engine security validation
Last synced: 05 Feb 2026
https://open-policy-agent.github.io/gatekeeper/
🐊 Policy Controller for Kubernetes
admission cncf gatekeeper hacktoberfest kubernetes mutation opa policy policy-engine security validation
Last synced: 24 Sep 2025
https://github.com/aserto-dev/topaz
Cloud-native authorization for modern applications and APIs
abac access-control api authorization cloud-native golang opa rbac rebac security zanzibar
Last synced: 30 Jan 2026
https://github.com/open-policy-agent/gatekeeper-library
📚 The OPA Gatekeeper policy library
cncf gatekeeper hacktoberfest kubernetes opa policy policy-library
Last synced: 14 May 2025
https://github.com/plexsystems/konstraint
A policy management tool for interacting with Gatekeeper
conftest gatekeeper kubernetes opa open-policy-agent policy rego
Last synced: 14 Jan 2026
https://github.com/open-policy-agent/opa-envoy-plugin
A plugin to enforce OPA policies with Envoy
authorization cloud-native compliance envoy istio-proxy opa opa-envoy policy
Last synced: 09 Mar 2026
https://github.com/oxyno-zeta/s3-proxy
S3 Reverse Proxy with GET, PUT and DELETE methods and authentication (OpenID Connect and Basic Auth)
basic-authentication opa openid-connect reverse-proxy s3 s3-bucket s3-proxy serve-static
Last synced: 16 May 2025
https://github.com/open-policy-agent/regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
code-quality language-server linter lsp magnificent opa open-policy-agent policy-as-code rego static-analysis
Last synced: 23 Sep 2025
https://github.com/open-policy-agent/contrib
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
contrib hack integrations opa open-policy-agent proof-of-concept
Last synced: 05 Apr 2025
https://github.com/sighupio/gatekeeper-policy-manager
A simple to use web-based OPA Gatekeeper policy manager
dashboard fury gatekeeper k8s kubernetes kustomize opa policies rego ui web webapp
Last synced: 02 Apr 2026
https://github.com/styrainc/regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
code-quality language-server linter lsp magnificent opa open-policy-agent policy-as-code rego static-analysis
Last synced: 16 May 2025
https://github.com/gogatekeeper/gatekeeper
An OpenID / Proxy service
authentication authorization keycloak oidc-proxy opa uma
Last synced: 06 Apr 2025
https://github.com/reposaur/reposaur
Open source compliance tool for development platforms.
audit compliance git github github-actions gitlab go golang golang-tools opa rego report security
Last synced: 17 Jan 2026
https://github.com/cisagov/scubagoggles
SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
cisa cybersecurity google google-workspace gws opa open-policy-agent open-source python scuba scubaconnect security security-automation
Last synced: 14 Oct 2025
https://github.com/eqtylab/cupcake
A native policy enforcement layer for AI coding agents. Built on OPA/Rego.
agent-security alignment claude-code coding-agents cursor factory-ai gemini-cli hooks llm-as-a-judge mcp opa opencode
Last synced: 13 Jun 2026
https://github.com/moabukar/cks-exercises-certified-kubernetes-security-specialist
A set of curated exercises to help you prepare for the CKS exam
anchore apparmor audit-log cks containerd containers falco gvisor kube-bench kubernetes networkpolicies opa seccomp secrets-management security security-tools static-analysis sysdig trivy
Last synced: 06 Apr 2025
https://github.com/open-policy-agent/kube-mgmt
Sidecar for managing OPA instances in Kubernetes.
devops k8s kubernetes opa policy
Last synced: 05 Feb 2026
https://github.com/StyraInc/regal
Regal is a linter for Rego, with the goal of making your Rego magnificent!
code-quality language-server lint linter linters lsp magnificent opa open-policy-agent policy-as-code rego static-analysis
Last synced: 11 May 2025
https://github.com/aquasecurity/postee
Notice: Postee is no longer under active development or maintenance.
aqua automation cloud-native devsecops docker golang jira kubernetes messaging opa rego security slack soar
Last synced: 12 Jan 2026
https://github.com/cisagov/ScubaGoggles
SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
cisa cybersecurity google google-workspace gws opa open-policy-agent open-source python scuba security security-automation
Last synced: 10 Mar 2025
https://github.com/StyraInc/rego-style-guide
Style guide for Rego
best-practices opa open-policy-agent policy-as-code rego style-guide styra
Last synced: 12 May 2025
https://github.com/microsoft/regorus
Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.
c confidential-computing cpp csharp golang interpreter java javascript no-std opa policy-as-code python rego rust wasm
Last synced: 31 Jan 2026
https://github.com/redhat-cop/rego-policies
Rego policies collection
conftest container-cop gatekeeper opa rego
Last synced: 04 Apr 2025
https://github.com/antgroup/cloudrec
CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.
alibabacloud aws-security cloud cloud-security cspm cybersecurity devsecops gcp-security multi-cloud opa scans security
Last synced: 02 Aug 2025
https://github.com/tmobile/magtape
MagTape Policy-as-Code for Kubernetes
admission-controller kubernetes magtape opa policy policy-as-code python tmobile webhook
Last synced: 01 Jul 2025
https://github.com/anderseknert/kube-review
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
admission-controller admission-review admission-webhook k8s kube-review kubectl kubernetes mutating-admission-webhook opa open-policy-agent policy-as-code validating-admission-webhook
Last synced: 23 Oct 2025
https://github.com/kubescape/regolibrary
The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
compliance kubernetes kubescape opa security
Last synced: 15 May 2025
https://github.com/open-policy-agent/npm-opa-wasm
Open Policy Agent WebAssembly NPM module (opa-wasm)
authorization browser declarative deno nodejs opa open-policy-agent policy wasm webassembly
Last synced: 12 Apr 2025
https://github.com/open-policy-agent/vscode-opa
An extension for VS Code which provides support for OPA and the Rego policy language
opa open-policy-agent policy-as-code rego vscode-extension
Last synced: 05 Apr 2025
https://github.com/devspace-cloud/devspace-cloud
DevSpace Cloud ⚡ Turn Kubernetes into a Powerful Developer Platform (new on-premise edition)
cloud-native development devspace gatekeeper kubernetes namespace-isolation namespaces opa open-policy-agent provision-namespaces provisioning rbac sandbox sandbox-environment sandboxing
Last synced: 17 Feb 2026
https://github.com/policy-hub/policy-hub-cli
CLI for searching Rego policies
cloud-native cncf hacktoberfest kubernetes opa openpolicyagent policies rego
Last synced: 30 Mar 2025
https://github.com/open-policy-agent/opa-docker-authz
A policy-enabled authorization plugin for Docker.
Last synced: 05 Apr 2025
https://github.com/dzungtran/echo-rest-api
A Golang restful API boilerplate based on Echo framework v4. Includes tools for module generation, db migration, authorization, modular, authentication and more.
boilerplate clean-architecture cuelang echo-framework firebase-auth go golang modular opa openpolicyagent rest-api template
Last synced: 18 Jul 2025
https://github.com/developer-guy/cosign-gatekeeper-provider
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures
cosign fulcio gatekeeper keyless opa rekor sigstore
Last synced: 06 Mar 2025
https://github.com/sigstore/cosign-gatekeeper-provider
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures
cosign fulcio gatekeeper keyless opa rekor sigstore
Last synced: 12 May 2025
https://github.com/anderseknert/pre-commit-opa
Pre-commit git hooks for Open Policy Agent (OPA) and Rego development
conftest git-hooks opa openpolicyagent pre-commit pre-commit-hooks rego
Last synced: 04 Jan 2026
https://github.com/brendanjryan/ccheck
A command line tool for validating Kubernetes configs with rego
cncf kubernetes opa rego test validation yaml
Last synced: 14 Mar 2026
https://github.com/StyraOSS/opa-kafka-plugin
Open Policy Agent (OPA) plug-in for Kafka authorization
authorization kafka kafka-authorization opa opa-kafka-plugin open-policy-agent openpolicyagent rego
Last synced: 05 Sep 2025
https://github.com/developer-guy/container-image-sign-and-verify-with-cosign-and-opa
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
cosign cosign-http-wrapper go golang opa open-policy-agent proof-of-concept
Last synced: 30 Apr 2025
https://github.com/anderseknert/opa-kafka-plugin
Open Policy Agent (OPA) plug-in for Kafka authorization
authorization kafka kafka-authorization opa opa-kafka-plugin open-policy-agent openpolicyagent rego
Last synced: 06 Mar 2025
https://github.com/developer-guy/policy-as-code-war
OPA Gatekeeper vs Kyverno
kubernetes kyverno minikube opa open-policy-agent policy-as-code
Last synced: 24 Feb 2026
https://github.com/StyraInc/opa-kafka-plugin
Open Policy Agent (OPA) plug-in for Kafka authorization
authorization kafka kafka-authorization opa opa-kafka-plugin open-policy-agent openpolicyagent rego
Last synced: 12 May 2025
https://github.com/madhuakula/docker-security-checker
Dockerfile Security Checker using OPA Rego policies with Conftest
conftest docker dockerfile infosec opa opa-rego-policies rego security
Last synced: 12 Oct 2025
https://github.com/turall/opa-python-client
Python client for Open Policy Agent
opa opa-client open-policy-agent open-policy-agent-python policy python python-opa-client
Last synced: 21 Feb 2026
https://github.com/rallyhealth/conftest-policy-packs
Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
Last synced: 12 Jan 2026
https://github.com/thangchung/bff-auth
The demonstration of modern authentication using BFF pattern and authorization enforcer using OPA
authentication bff-microservice dotnet golang identityserver4 nextjs opa reverse-proxy rust
Last synced: 30 Apr 2025
https://github.com/build-security/opa-express-middleware
Node.JS Express middleware for working with the Open Policy Agent
authorization express express-middleware nodejs opa
Last synced: 12 May 2025
https://github.com/appvia/psp-migration
Recreation of common Pod Security Policy configuration in other common Kubernetes policy engines
gatekeeper hacktoberfest k8s kubernetes kubernetes-security kubewarden kyverno opa pod-security-policy podsecuritypolicies podsecuritypolicy policy-as-code psp security yaml
Last synced: 06 Jun 2026
https://github.com/Parsifal-M/backstage-opa-plugins
Open Policy Agent (OPA) Plugins for Backstage
backstage backstage-opa-backend backstage-plugin opa open-source permissions plugins rbac
Last synced: 04 Apr 2025
https://github.com/snigdhasambitak/cks
Practice questions for Certified Kubernetes Security Specialist (CKS) exam
apparmor audit-log cks falco kube-bench kubernetes opa runsc trivy
Last synced: 24 Feb 2025
https://github.com/Turall/OPA-python-client
Python client for Open Policy Agent
opa opa-client open-policy-agent open-policy-agent-python policy python python-opa-client
Last synced: 12 May 2025
https://github.com/alokmenghrajani/riskybird
Regular expression authors best friend
Last synced: 05 Jan 2026
https://github.com/cmacrae/kove
Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics
go golang kubernetes metrics monitoring observability opa open-policy-agent prometheus prometheus-exporter rego
Last synced: 20 Mar 2025
https://github.com/christophwille/dotnet-opa-wasm
Call Open Policy Agent (OPA) policies in WASM (Web Assembly) from .NET Core
csharp dotnet-core opa open-policy-agent wasm wasmtime web-assembly webassembly
Last synced: 09 May 2025
https://github.com/spacelift-io/spacelift-policies-example-library
A library of example Spacelift policies
examples opa policies spacelift
Last synced: 13 Apr 2025
https://github.com/christophwille/csharp-opa-wasm
Call Open Policy Agent (OPA) policies in WASM (Web Assembly) from .NET Core
csharp dotnet-core opa open-policy-agent wasm wasmtime web-assembly webassembly
Last synced: 06 Mar 2025
https://github.com/mxab/nacp
Admission Controller as a proxy for Nomad. Define OPA rules for validation and mutation or plugin remotes
admission-controller devsecops nomad notary notation opa
Last synced: 12 May 2025
https://github.com/prancer-io/prancer-compliance-test
This repository includes cloud security policies for IaC and live resources.
devops devsecops iac iac-security opa policy rego
Last synced: 17 Jan 2026
https://github.com/anderseknert/rego-test-assertions
Tiny Rego library with helper functions for unit testing
assertions assertions-library opa open-policy-agent policy policy-as-code rego testing
Last synced: 17 Feb 2026
https://github.com/EliuX/flask-opa
Flask extension for OPA
client-library cloud flask-extension microservices-architecture opa policy python3 security
Last synced: 12 May 2025
https://github.com/sighupio/module-policy
Policy Module: Policy enforcement for your Kubernetes Cluster
cncf fury gatekeeper k8s kubernetes module opa sighup
Last synced: 10 Jul 2025
https://github.com/Bisnode/opa-java-client
java javaclient opa openpolicyagent
Last synced: 12 May 2025
https://github.com/xchapter7x/hcunit
Helm Chart Unit: helps to unit test rendering of your templates using policies
helm helm-plugin helm-plugins opa open-policy-agent rego unit-test unit-testing unittest unittesting unittests
Last synced: 26 Jan 2026
https://github.com/StyraInc/opa-aws-cloudformation-hook
AWS Cloudformation Hook for OPA-powered infrastructure policy enforcement
authorization aws aws-cloudformation aws-cloudformation-hooks cloudformation opa open-policy-agent policy-as-code rego
Last synced: 07 May 2025
https://github.com/styrainc/opa-aws-cloudformation-hook
AWS Cloudformation Hook for OPA-powered infrastructure policy enforcement
authorization aws aws-cloudformation aws-cloudformation-hooks cloudformation opa open-policy-agent policy-as-code rego
Last synced: 02 Jul 2025
https://microsoft.github.io/rego-cpp/
A C++ interpreter for the OPA policy language Rego
c cpp opa policy policy-engine python rust
Last synced: 12 May 2025
https://github.com/borgeby/jarl
Jarl is an Open Policy Agent (OPA) evaluator for the JVM and Javascript, written in Clojure(Script)
clojure clojurescript jvm opa rego
Last synced: 12 May 2025
https://github.com/open-policy-agent/community
The Community repository is the place to go for support with OPA and OPA Sub-Projects, like Conftest and Gatekeeper.
conftest gatekeeper opa open-policy-agent rego
Last synced: 10 Apr 2025
https://github.com/microsoft/rego-cpp
A C++ interpreter for the OPA policy language Rego
c cpp opa policy policy-engine python rust
Last synced: 08 Jan 2026
https://github.com/ollionorg/gcp-landing-zone
Leverage Ollion's GCP Landing Zone to deploy a secure, compliant foundation with ease. The repository contains an implementation of a secure and compliant landing zone pattern that will help expedite cloud migration for an enterprise in a heavily regulated industry.
cis-gcp-benchmark cloud-compliance cloud-security compliance foundation gcp gcp-enterprice-foundations-blueprint gcp-landing-zone gcp-landing-zones google-cloud-landing-zone google-cloud-landing-zone-platform nist800-53 opa pci-dss regula security security-foundation
Last synced: 12 Apr 2025
https://github.com/nscuro/dtapac
Audit Dependency-Track findings and policy violations via policy as code
dependency-track dtrack go golang opa open-policy-agent owasp policy-as-code
Last synced: 21 Aug 2025
https://github.com/Bisnode/opa-spring-security
Open Policy Agent for Spring Security
authentication authorization jwt opa opa-spring-filter opa-spring-security openpolicyagent spring-boot spring-security
Last synced: 12 May 2025
https://github.com/permitio/pdp
Permit Policy Decision Point service. High-performance, policy-driven authorization for your apps and service.
authorization microservice opa opal open-policy-agent permit permitio policy policy-as-code python realtime rust websocket
Last synced: 13 May 2026
https://github.com/psibi/rego-mode
Emacs major mode for OPA's rego language
major-mode opa open-policy-agent rego
Last synced: 30 Jun 2025
https://github.com/chen-keinan/mesh-kridik
mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and is leveraged by OPA (Open Policy Agent) to enforce security rules.
istio kubernetes kubernetes-cluster opa open-policy-agent open-source policy scanner security service-mesh
Last synced: 13 Jun 2025
https://github.com/styrainc/enterprise-opa
Enterprise OPA is a distribution of Open Policy Agent with enterprise-grade features to get OPA into production quickly, easily, and inexpensively.
authorization opa open-policy-agent performance policy styra
Last synced: 05 Sep 2025
https://github.com/jferrater/opa-data-filter-spring-boot-starter
Spring Boot library for enforcing authorization on Spring Data JPA and MongoDB by filtering data using the Open Policy Agent (OPA) partial evaluation feature.
authorization cloud-native datafilter java java-library mongodb opa opa-data-filter openpolicyagent spring-data-jpa spring-data-mongo springboot sqldb
Last synced: 11 Sep 2025
https://github.com/zenitysec/sphinx-rego
Sphinx extension that automatically documents Open Policy Agent Rego policies
conftest documentation-tool opa open-policy-agent open-policy-agent-python rego sphinx
Last synced: 12 May 2025
https://github.com/secmon-lab/alertchain
Simple SOAR (Security Orchestration, Automation and Response) framework integrated with OPA/Rego
Last synced: 27 Apr 2025
https://github.com/open-policy-agent/opa-typescript
Open Source TypeScript packages for use with Open Policy Agent (OPA).
access-control authorization javascript opa open-policy-agent rbac role-based-access-control sdk typescript
Last synced: 30 Apr 2026
https://github.com/masterpointio/github-action-opa-rego-test
GitHub Action to automate testing for your OPA (Open Policy Agent) Rego policies, generates a report with coverage information, and posts the test results as a comment on your pull requests.
github-action github-actions opa opa-testing open-policy-agent rego rego-test rego-testing
Last synced: 11 Apr 2025
https://github.com/kevinswiber/spego
A set of policies for Open Policy Agent to validate OpenAPI definitions.
conftest linter opa open-policy-agent openapi
Last synced: 11 Mar 2026
https://github.com/open-policy-agent/opa-java
A driver to connect via Java to Open Policy Agent (OPA) deployments.
opa open-policy-agent sdk-java
Last synced: 16 Dec 2025
https://github.com/chrisns/k8s-opa-boilerplate
Boilerplate example of managing OPA with kustomize
hacktoberfest kubernetes kustomize opa open-policy-agent rego yaml
Last synced: 22 Apr 2025
https://github.com/StyraInc/zed-rego
Zed extension for the Rego policy language from Open Policy Agent (OPA)
code-quality developer-experience editor opa open-policy-agent policy-as-code regal rego zed
Last synced: 12 May 2025
https://github.com/segrax/openpolicyagent
PSR-7 and PSR-15 OPA Authorization Middleware and Open Policy Agent Client
authorization authorization-middleware middlewares opa openpolicyagent php psr-15 psr-7
Last synced: 25 Oct 2025
https://github.com/kubeshop/monokle-core
Monokle validation engine, CLI and shared UI components
cli kubernetes opa validation yaml
Last synced: 13 Jul 2025
https://github.com/tx7do/kratos-authz
kratos authorization middleware
access-control authorization casbin go golang kratos middleware opa openfga ory-keto zanzibar
Last synced: 03 Oct 2025
https://github.com/StyraInc/opa-java
The Styra-supported driver to connect via Java to Open Policy Agent (OPA) and Enterprise OPA deployments.
opa open-policy-agent sdk-java
Last synced: 12 May 2025
https://github.com/statcan/gatekeeper-policies
Policies that are to be enforced by GateKeeper for the Cloud Native Platform
cloud-native cns gatekeeper kubernetes opa open-policy-agent
Last synced: 04 Sep 2025
https://github.com/xenitab/gatekeeper-library
Collection of OPA Gatekeeper policies that can be used in your Kubernetes cluster.
kubernetes opa opa-gatekeeper rego xenit-kubernetes-framework
Last synced: 02 Aug 2025
https://github.com/mneil/opa-dynamodb
Scalable policy store with real-time policy updates using Open Policy Agent.
Last synced: 07 Feb 2026
https://github.com/k8spin/opa-k8s-development
Contains a valid OPA unit testing environment
development kubernetes mutation opa openpolicyagent rego testing validation
Last synced: 16 Sep 2025
https://github.com/developer-guy/monitor-opa-gatekeeper
🖥️ 👓 Monitor your OPA Gatekeeper via Grafana Dashboard
dashboard gatekeeper grafana metrics opa
Last synced: 06 May 2025