All Policies
Pod Security
Pod Security Standards implemented as Kyverno policies.
These Kyverno policies are based the on Kubernetes Pod Security Standards definitions. To apply all Pod Security Standard policies (recommended) install Kyverno and kustomize, then run:
1kustomize build https://github.com/kyverno/policies/pod-security | kubectl apply -f -
Note
The upstreamkustomize should be used to apply customizations in these policies, available here. In many cases the version of kustomize built-in to kubectl will not work.Installation is also available via Helm by using the chart kyverno-policies. For more information, see the kyverno-policies repo here.
Pod Security Standard policies are organized in two groups, Baseline and Restricted. Use the filters on the left sidebar to select and view the policies currently covered in each group by selecting the appropriate Policy Category.