Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CNCF suggests adding benefits/value proposition section to introduction #530

Merged
merged 5 commits into from
Jan 29, 2025
Merged

CNCF suggests adding benefits/value proposition section to introduction #530

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
ba65fc7
CNCF suggest adding benefits/value poposition section to introduction
jhkrug Jan 28, 2025
7bca1c5
Changed wording and added use cases.
jhkrug Jan 28, 2025
ecc9435
Update docs/introduction.md
jhkrug Jan 29, 2025
95fe4fb
Update docs/introduction.md
jhkrug Jan 29, 2025
d93a9a6
Update docs/introduction.md
jhkrug Jan 29, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 22 additions & 10 deletions docs/introduction.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,19 +17,31 @@ doc-topic: [introduction]
Kubewarden is a Kubernetes Policy Engine.
It aims to be the Universal Policy Engine for Kubernetes.

- You can reuse policies from other policy engines without having to rewrite
them.
- You can write your own policies in any programming language that generates
WebAssembly binaries, reusing your language tooling and libraries.
- You can run policies both outside the cluster and as part of your CI/CD
processes.

Kubewarden also provides an audit scanner to actively and continuously check
policy enforcement over time.

Kubewarden is a [CNCF](https://cncf.io) Sandbox project,
originally created by [SUSE Rancher](https://www.rancher.com/).

## How does Kubewarden help?

Kubewarden offers flexibility for policy admission and enforcement in a Kubernetes environment.

### Benefits and value

- Use any programming language that generates [WebAssembly](https://webassembly.org) binaries to write your policies.
- WebAssembly enables policy compatibility across processors and operating systems.
- Reuse of policies from other policy engines without the need for rewriting them.
- Distribute policies using standard and secure mechanisms such as [OCI](https://opencontainers.org) compliant registries.
- Policy enforcement at admission ensures only compliant workloads run.
- The Kubewarden audit scanner actively and continuously checks policy enforcement over time.
- Verify policies using [SLSA](https://slsa.dev) (Supply Chain Levels for Software Artifacts) tools and practices.
- Kubewarden provides a comprehensive approach to admission policy management.
- CNCF membership and a growing open source community and ecosystem help Kubewarden with transparency, collaboration and improvement.

### Use cases

- Security hardening. For example, enforce policies restricting container privileges, enforce network policies, or block insecure image registries.
- Compliance auditing. Ensure workloads comply with organizational or regulatory standards and best practices.
- Resource optimization. Enforce resource limits and quotas.

## New to Kubewarden?

If new to the Kubewarden project start with the [Quick start guide](./quick-start.md)
Expand Down