Enforce admission policies with artifact attestations in Kubernetes using OPA Gatekeeper

We’ve released support for enforcing GitHub Artifact Attestations in OPA Gatekeeper, an open source admission controller for Kubernetes, in public preview.

With this release, you can write and enforce policies that require deployed workloads to include specific attestations, such as build provenance, an SBOM, or any custom attestation. This integration helps you automate and enforce security and compliance requirements in Kubernetes by blocking untrusted or non-compliant images before deployment.

Learn more about using artifact attestations and try out the provider plugin in the GitHub Artifact Attestations OPA Provider repository.

JUN.9Release
Dependabot version updates now support the Deno ecosystem
- Supply Chain Security
JUN.9Retired
Upcoming breaking changes for npm v12
- Supply Chain Security
MAY.26Release
Dependabot version updates now support the sbt ecosystem
- Supply Chain Security
MAY.22Release
Staged publishing and new install-time controls for npm
- Supply Chain Security
MAY.19Retired
Upcoming deprecation of Python 3.9 for Dependabot
- Supply Chain Security
MAY.12Retired
Synchronous SBOM API deprecated
- Supply Chain Security
MAY.11Improvement
Cross-org Dependabot access for internal repositories
- Supply Chain Security
MAY.6Release
Search and filter bar for repository security advisories
- Supply Chain Security
MAY.5Release
Dependency scanning with GitHub MCP Server is in public preview
- Supply Chain Security

Enforce admission policies with artifact attestations in Kubernetes using OPA Gatekeeper

Related Posts

Subscribe to our developer newsletter