Skip to content

Latest commit

 

History

History

policy-essentials-v2022

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.krmignore
.krmignore
 
 
Kptfile
Kptfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
kustomization.yaml
kustomization.yaml
 
 
no-secrets-as-env-vars.yaml
no-secrets-as-env-vars.yaml
 
 
pods-require-security-context.yaml
pods-require-security-context.yaml
 
 
prohibit-role-wildcard-access.yaml
prohibit-role-wildcard-access.yaml
 
 
psp-allow-privilege-escalation-container.yaml
psp-allow-privilege-escalation-container.yaml
 
 
psp-capabilities.yaml
psp-capabilities.yaml
 
 
psp-host-namespace.yaml
psp-host-namespace.yaml
 
 
psp-host-network-ports.yaml
psp-host-network-ports.yaml
 
 
psp-privileged-container.yaml
psp-privileged-container.yaml
 
 
psp-restrict_root_containers.yaml
psp-restrict_root_containers.yaml
 
 
restrict-clusteradmin-rolebindings.yaml
restrict-clusteradmin-rolebindings.yaml
 
 
seccomp-default.yaml
seccomp-default.yaml
 
 

README.md

Policy Essentials v2022

Description

Use the Policy Essentials v2022 policy bundle with Policy Controller to apply best practices to your cluster resources.

Compatibility

This bundle requires Policy Controller v1.14.3 or higher.

Usage

(Optional) Preview the policy constraints with kubectl:

kubectl kustomize https://github.com/GoogleCloudPlatform/gke-policy-library.git/bundles/policy-essentials-v2022

Apply the policy constraints with kubectl:

kubectl apply -k https://github.com/GoogleCloudPlatform/gke-policy-library.git/bundles/policy-essentials-v2022

For more information visit:

https://cloud.google.com/anthos-config-management/docs/how-to/using-pci-dss-v3