KYVERNO OSS

Kubernetes-Native Policy Management

Kyverno, a CNCF incubating project purpose-built for Kubernetes, allows cluster admins to write and manage policies to validate, mutate, and generate resources, as well as secure supply chains by verifying container images.

Compare featuresWatch demo

Why Kyverno

Created by Nirmata and now a CNCF incubating project with over 300 million downloads, Kyverno has become the de facto solution for Kubernetes policy enforcement and management.

Kubernetes-Native

Built for Kubernetes, Kyverno works on any Kubernetes resource and not just Pods

No New Language Required

Unlike other policy managers, policies are written as YAML and work like Kubernetes manifests making policy updates easy

Automate Pod Security 
Enforcement

A Kyverno policy written for Pods applies automatically to all known Kubernetes Pod controllers helping you automatically enforce policies on Deployments and StatefulSets

Extensive Policy

Library of ready-to-use policies for a wide array of usage on various Kubernetes and ecosystem resources and subjects

Kyverno CLI

Easily test resources against a given set of policies to see how they'll react in a pipeline, long before they hit an actual cluster

Easy Audit Results

All-in-one policy report tool gives you graphical dashboards, alerts, and more

Broad Version Support

Kyverno offers backward compatibility to Kubernetes 1.16 to deliver pod security standards consistently and across versions

Supply Chain Security

Kyverno can validate both container image signatures and any attestation statement without requiring complex bolt-on approaches giving you immediate security in your supply chain delivery pipelines

Strong Adoption & Community

Over 300 million downloads and the most preferred Kubernetes policy engine on GitHub

FREE GUIDE

Ultimate Guide to Kubernetes Governance & Policy Management

Get Started
with Kyverno

Join thousands of organizations using Kyverno to ensure governance and security.

Leading Enterprises Trust Kyverno for Governance & Security

Subscribe for Kubernetes security news, articles & resources