Kyverno OSS

Kyverno OSS is a CNCF incubating project purpose-built for policy-based Kubernetes security and governance. Kyverno OSS empowers platform engineering teams to write and manage Kubernetes policies, secure software supply chains, and validate, mutate, and generate resources – all with open source flexibility.

kyverno logo clear

Why Nirmata?

Kubernetes Native


Kyverno is purpose-built for Kubernetes policy management and more, and works on any Kubernetes resource – not just pods.

No Language Required

No New Language Required

Unlike other policy managers, policies are written as YAML and work like Kubernetes manifests, making policy updates easy.

Automate Pod Security 

Automate Pod Security Enforcement

A Kyverno policy written for Pods applies automatically to all known Kubernetes Pod controllers, helping you automatically enforce policies on Deployments and StatefulSets.

Extensive Policy

Extensive Policies

Kyverno has a library of ready-to-use policies for a wide array of usage on various Kubernetes and ecosystem resources and subjects

Kyverno CLI

Kyverno CLI

With Kyverno, it is easy to test resources against a given set of policies to see how they'll react in a CI/CD pipeline, long before they hit an actual cluster.

Easy Audit Results

Admission Controller

Don’t just detect insecure configurations. With Kyverno you can proactively block and prevent them.

Broad Version Support

Broad Version Support

Curated policy sets provide workload security, best practices, multi-tenancy and automation.

Supply Chain Security

Software Supply Chain Security

Get policy best-practices assessments, periodic trainings, and upgrade support.

Strong Adoption Community

Extensive Adoption & Community

With over 2.4 billion downloads, Kyverno is the most popular Kubernetes policy management and creation engine on GitHub.

Easy Audit Results

Easy-to-Audit Results

Kyverno adapters enrich policy decisions for integrations.

Your Fast Track to Kubernetes Security and Compliance

Kyverno is a game-changer for platform engineering teams, providing a powerful platform for Kubernetes policy management and creation. With Kyverno, users can effortlessly validate, mutate, and generate Kubernetes resources, ensuring security, compliance, and reliability in their deployments. What’s more, Kyverno strengthens security by enabling the verification of container images within the software supply chain. Kyverno’s all-in-one solution streamlines the DevSecOps workflow, enhancing efficiency and confidence in Kubernetes operations while promoting best practices in security and compliance.


Securing Kubernetes Using Policy-as-Code

Get Started with Kyverno

Join thousands of organizations using Kyverno to ensure Kubernetes policy management and security.

Leading Enterprises Trust Kyverno for Governance and Security

Using open source Kyverno in production? Accelerate adoption with enterprise features, support and consulting services.

Recommended Content on Kyverno

Kyverno Community Highlights Videos

“Over time, I see Kyverno becoming the machinery that goes hand-in-hand with Kubernetes and enables so many of these use cases.”

Chip Zoller, Kyverno Maintainer

Get Kyverno News Delivered Right to Your Inbox

Accelerate your business and advance your career. Subscribe to our monthly newsletter for expert advice on Kubernetes security, plus articles and resources covering our DevSecOps platform powered by Kyverno for Kubernetes.

Want to fast-track security and compliance in your Kubernetes environment?