[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-9902":3},{"id":4,"name":5,"fullName":6,"owner":5,"repo":5,"description":7,"homepage":8,"htmlUrl":9,"language":10,"languages":9,"totalLinesOfCode":9,"stars":11,"forks":12,"watchers":13,"openIssues":14,"contributorsCount":15,"subscribersCount":15,"size":15,"stars1d":16,"stars7d":17,"stars30d":18,"stars90d":15,"forks30d":15,"starsTrendScore":19,"compositeScore":20,"rankGlobal":9,"rankLanguage":9,"license":21,"archived":22,"fork":22,"defaultBranch":23,"hasWiki":24,"hasPages":24,"topics":25,"createdAt":9,"pushedAt":9,"updatedAt":31,"readmeContent":32,"aiSummary":33,"trendingCount":15,"starSnapshotCount":15,"syncStatus":34,"lastSyncTime":35,"discoverSource":36},9902,"kyverno","kyverno\u002Fkyverno","Unified Policy as Code","https:\u002F\u002Fkyverno.io",null,"Go",7829,1387,52,309,0,5,23,103,21,40.43,"Apache License 2.0",false,"main",true,[26,27,28,29,30],"compliance","governance","kubernetes","policy-as-code","security","2026-06-12 02:02:14","\u003C!--\nCopyright 2025 The Kyverno Authors\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http:\u002F\u002Fwww.apache.org\u002Flicenses\u002FLICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n-->\n\n# Kyverno [![Tweet](https:\u002F\u002Fimg.shields.io\u002Ftwitter\u002Furl\u002Fhttp\u002Fshields.io.svg?style=social)](https:\u002F\u002Ftwitter.com\u002Fintent\u002Ftweet?text=Cloud%20Native%20Policy%20Management.%20No%20new%20language%20required%1&url=https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002F&hashtags=kubernetes,devops)\n\n**Cloud Native Policy Management 🎉**\n\n[![Build Status](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Factions\u002Fworkflows\u002Ftest.yml\u002Fbadge.svg)](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Factions)\n[![Go Report Card](https:\u002F\u002Fgoreportcard.com\u002Fbadge\u002Fgithub.com\u002Fkyverno\u002Fkyverno)](https:\u002F\u002Fgoreportcard.com\u002Freport\u002Fgithub.com\u002Fkyverno\u002Fkyverno)\n![License: Apache-2.0](https:\u002F\u002Fimg.shields.io\u002Fgithub\u002Flicense\u002Fkyverno\u002Fkyverno?color=blue)\n[![GitHub Repo stars](https:\u002F\u002Fimg.shields.io\u002Fgithub\u002Fstars\u002Fkyverno\u002Fkyverno)](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fstargazers)\n[![CII Best Practices](https:\u002F\u002Fbestpractices.coreinfrastructure.org\u002Fprojects\u002F5327\u002Fbadge)](https:\u002F\u002Fbestpractices.coreinfrastructure.org\u002Fprojects\u002F5327)\n[![OpenSSF Scorecard](https:\u002F\u002Fapi.securityscorecards.dev\u002Fprojects\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fbadge)](https:\u002F\u002Fsecurityscorecards.dev\u002Fviewer\u002F?uri=github.com\u002Fkyverno\u002Fkyverno)\n[![SLSA 3](https:\u002F\u002Fslsa.dev\u002Fimages\u002Fgh-badge-level3.svg)](https:\u002F\u002Fslsa.dev)\n[![Artifact HUB](https:\u002F\u002Fimg.shields.io\u002Fendpoint?url=https:\u002F\u002Fartifacthub.io\u002Fbadge\u002Frepository\u002Fkyverno)](https:\u002F\u002Fartifacthub.io\u002Fpackages\u002Fsearch?repo=kyverno)\n[![codecov](https:\u002F\u002Fcodecov.io\u002Fgh\u002Fkyverno\u002Fkyverno\u002Fbranch\u002Fmain\u002Fgraph\u002Fbadge.svg)](https:\u002F\u002Fapp.codecov.io\u002Fgh\u002Fkyverno\u002Fkyverno\u002Fbranch\u002Fmain)\n[![FOSSA Status](https:\u002F\u002Fapp.fossa.com\u002Fapi\u002Fprojects\u002Fgit%2Bgithub.com%2Fkyverno%2Fkyverno.svg?type=shield)](https:\u002F\u002Fapp.fossa.com\u002Fprojects\u002Fgit%2Bgithub.com%2Fkyverno%2Fkyverno?ref=badge_shield)\n\n\u003Cp align=\"center\">\u003Ca href=\"https:\u002F\u002Fkyverno.io\" rel=\"kyverno.io\">\u003Cimg src=\"img\u002FKyverno_Horizontal.png\" alt=\"Kyverno Logo\" width=\"400\">\u003C\u002Fa>\u003C\u002Fp>\n\n## 📑 Table of Contents\n\n- [About Kyverno](#about-kyverno)\n- [Documentation](#-documentation)\n- [Demos & Tutorials](#-demos--tutorials)\n- [Popular Use Cases](#-popular-use-cases)\n- [Explore the Policy Library](#-explore-the-policy-library)\n- [Getting Help](#-getting-help)\n- [Contributing](#-contributing)\n- [Software Bill of Materials](#-software-bill-of-materials)\n- [Contributors](#-contributors)\n- [License](#-license)\n\n## About Kyverno\n\nKyverno is a Kubernetes-native policy engine designed for platform engineering teams. It enables security, compliance, automation, and governance through policy-as-code. Kyverno can:\n\n- Validate, mutate, generate, and clean up resources using Kubernetes admission controls and background scans.\n- Verify container image signatures for supply chain security.\n- Operate with tools you already use — like `kubectl`, `kustomize`, and Git.\n\n\u003Ca href=\"https:\u002F\u002Fopensourcesecurityindex.io\u002F\" target=\"_blank\" rel=\"noopener\">\n  \u003Cimg src=\"https:\u002F\u002Fopensourcesecurityindex.io\u002Fbadge.svg\" alt=\"Open Source Security Index badge\" width=\"282\" height=\"56\" \u002F>\n\u003C\u002Fa>\n\n## 📙 Documentation\n\nKyverno installation and reference documentation is available at [kyverno.io](https:\u002F\u002Fkyverno.io).\n\n- 👉 **[Quick Start](https:\u002F\u002Fkyverno.io\u002Fdocs\u002Fintroduction\u002F#quick-start)**\n- 👉 **[Installation Guide](https:\u002F\u002Fkyverno.io\u002Fdocs\u002Finstallation\u002F)**\n- 👉 **[Policy Library](https:\u002F\u002Fkyverno.io\u002Fpolicies\u002F)**\n\n## 🎥 Demos & Tutorials\n\n- ▶️ [Getting Started with Kyverno – YouTube](https:\u002F\u002Fwww.youtube.com\u002Fresults?search_query=kyverno+tutorial)\n- 🧪 [Kyverno Playground](https:\u002F\u002Fplayground.kyverno.io\u002F)\n\n## 🎯 Popular Use Cases\n\nKyverno helps platform teams enforce best practices and security standards. Some common use cases include:\n\n### 1. **Security & Compliance**\n- Enforce Pod Security Standards (PSS)\n- Require specific security contexts\n- Validate container image sources and signatures\n- Enforce CIS Benchmark policies\n\n### 2. **Operational Excellence**\n- Auto-label workloads\n- Enforce naming conventions\n- Generate default configurations (e.g., NetworkPolicies)\n- Validate YAML and Helm manifests\n\n### 3. **Cost Optimization**\n- Enforce resource quotas and limits\n- Require cost allocation labels\n- Validate instance types\n- Clean up unused resources\n\n### 4. **Developer Guardrails**\n- Require readiness\u002Fliveness probes\n- Enforce ingress\u002Fegress policies\n- Validate container image versions\n- Auto-inject config maps or secrets\n\n## 📚 Explore the Policy Library\n\nDiscover hundreds of production-ready Kyverno policies for security, operations, cost control, and developer enablement.\n\n👉 [Browse the Policy Library](https:\u002F\u002Fkyverno.io\u002Fpolicies\u002F)\n\n## 🙋 Getting Help\n\nWe’re here to help:\n\n- 🐞 File a [GitHub Issue](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fissues)\n- 💬 Join the [Kyverno Slack Channel](https:\u002F\u002Fslack.k8s.io\u002F#kyverno)\n- 📅 Attend [Community Meetings](https:\u002F\u002Fkyverno.io\u002Fcommunity\u002F#community-meetings)\n- ⭐️ [Star this repository](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fstargazers) to stay updated\n\n## ➕ Contributing\n\nThank you for your interest in contributing to Kyverno!\n\n- ✅ Read the [Contribution Guidelines](\u002FCONTRIBUTING.md)\n- 🤖 Read The [AI_Usage_Policy](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fcommunity\u002Fblob\u002Fmain\u002FAI_USAGE_POLICY.md)\n- 🧵 Join [GitHub Discussions](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fdiscussions)\n- 📖 Read the [Development Guide](\u002FDEVELOPMENT.md)\n- 🏁 Check [Good First Issues](https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Flabels\u002Fgood%20first%20issue) and request with `\u002Fassign`\n- 🌱 Explore the [Community page](https:\u002F\u002Fkyverno.io\u002Fcommunity\u002F)\n\n## 🧾 Software Bill of Materials\n\nAll Kyverno images include a Software Bill of Materials (SBOM) in [CycloneDX](https:\u002F\u002Fcyclonedx.org\u002F) format. SBOMs are available at:\n\n- 👉 [`ghcr.io\u002Fkyverno\u002Fsbom`](https:\u002F\u002Fgithub.com\u002Forgs\u002Fkyverno\u002Fpackages?tab=packages&q=sbom)\n- 👉 [Fetching the SBOM](https:\u002F\u002Fkyverno.io\u002Fdocs\u002Fsecurity\u002F#fetching-the-sbom-for-kyverno)\n\n## 👥 Contributors\n\nKyverno is built and maintained by our growing community of contributors!\n\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkyverno\u002Fkyverno\u002Fgraphs\u002Fcontributors\">\n  \u003Cimg src=\"https:\u002F\u002Fcontrib.rocks\u002Fimage?repo=kyverno\u002Fkyverno\" alt=\"Contributors image\" \u002F>\n\u003C\u002Fa>\n\n_Made with [contributors-img](https:\u002F\u002Fcontrib.rocks)_\n\n## 📄 License\n\nCopyright 2026, the Kyverno project. All rights reserved.  \nKyverno is licensed under the [Apache License 2.0](LICENSE).\n\nKyverno is a [Cloud Native Computing Foundation (CNCF) Incubating project](https:\u002F\u002Fwww.cncf.io\u002Fprojects\u002F) and was contributed by [Nirmata](https:\u002F\u002Fnirmata.com\u002F?utm_source=github&utm_medium=repository).\n","Kyverno 是一个 Kubernetes 原生的策略引擎，专为平台工程团队设计。它通过策略即代码的方式实现安全、合规性、自动化和治理。其核心功能包括基于 Kubernetes CRD 的策略定义、内置的策略库以及对 Kubernetes 资源的验证、变异和生成操作。Kyverno 采用 Go 语言编写，支持多种策略类型，并且不需要学习新的策略语言。该项目适用于需要在 Kubernetes 集群中实施安全策略、确保资源符合企业标准或行业规范的场景，如云原生应用的安全加固、配置管理等。",2,"2026-06-11 03:25:19","top_topic"]