├── .github └── workflows │ └── worklows.yaml ├── .gitignore ├── .gitleaks.toml ├── LICENSE ├── README.md ├── docs ├── policy-list.md └── policy-prerequisites.md ├── environments ├── dev │ ├── kustomization.yaml │ ├── kustomize-configs │ │ └── policyset-suffixer.yml │ └── managedclusterset.yml └── prod │ ├── kustomization.yaml │ ├── kustomize-configs │ └── policyset-suffixer.yml │ └── managedclusterset.yml ├── kustomize-configs ├── kustomization.yaml ├── namespace-namereference.yml ├── policyset-namereference.yml └── set-clusterset-references.yml ├── local-cluster ├── kustomization.yaml └── managedcluster.yml ├── policies ├── acm-configs │ ├── ensure-placement-toleration │ │ ├── README.md │ │ ├── ensure-placement-toleration.yml │ │ ├── generator.yml │ │ └── kustomization.yaml │ ├── feature-flags-placement │ │ ├── README.md │ │ ├── feature-flag-placements.yml │ │ ├── generator.yml │ │ └── kustomization.yaml │ ├── klusterlet-infra │ │ ├── README.md │ │ ├── generator.yml │ │ ├── infra-addondeploymentconfig.yml │ │ ├── infra-selector-tolerations.yml │ │ ├── kustomization.yaml │ │ └── worker-addondeploymentconfig.yml │ ├── kubeadmin-config-trustca │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ └── update-kubeadmin-trustca.yml │ ├── kustomization.yaml │ ├── managedserviceaccount │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── managedserviceaccount.yml │ │ └── multiclusterengine.yml │ ├── observability │ │ ├── README.md │ │ ├── console.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── acm-observability-status.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── noobaa-cert-secret.yml │ │ ├── objectbucketclaim.yml │ │ ├── observability.yml │ │ ├── pull-secret.yml │ │ ├── thanos-secret.yml │ │ └── uiplugin.yml │ ├── policy-alerts │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── policy-prometheusrule.yml │ ├── remove-kubeadmin-pass │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ └── remove-kubeadmin.yml │ └── set-cluster-debug-mode │ │ ├── README.md │ │ ├── cluster-debug-mode.yml │ │ ├── generator.yml │ │ ├── health │ │ └── managedcluster-debug.yml │ │ └── kustomization.yaml ├── acm-placements │ ├── env-bound-hub-placement.yml │ ├── env-bound-nohub-placement.yml │ ├── env-bound-placement.yml │ ├── kustomization.yaml │ ├── managedclustersetbinding.yml │ └── namespace.yml ├── application-defaults │ ├── app-reload │ │ ├── README.md │ │ └── advanced │ │ │ ├── generator.yml │ │ │ ├── kustomization.yaml │ │ │ ├── reload-tracker-configmap.yml │ │ │ └── reload-tracker-deployment.yml │ ├── generator.yml │ ├── gitops-multicluster │ │ ├── README.md │ │ ├── argocd-instances │ │ │ ├── base │ │ │ │ ├── argocd.yml │ │ │ │ ├── consolelink.yml │ │ │ │ ├── kustomization.yaml │ │ │ │ └── namespace.yml │ │ │ └── team-scooter │ │ │ │ ├── argocd.yml │ │ │ │ ├── cluster-secrets.yml │ │ │ │ ├── consolelink.yml │ │ │ │ ├── kustomization.yaml │ │ │ │ ├── managedserviceaccount.yml │ │ │ │ └── rolloutmanager.yml │ │ ├── generator.yml │ │ ├── hub-template-auth │ │ │ ├── clusterrole.yml │ │ │ ├── clusterrolebinding.yml │ │ │ ├── kustomization.yml │ │ │ └── serviceaccount.yml │ │ └── kustomization.yaml │ ├── kustomization.yaml │ └── network │ │ └── block-all-networkpolicy.yml ├── cluster-configs │ ├── README.md │ ├── apiserver-cert │ │ ├── README │ │ ├── apiserver.yml │ │ ├── cert-ready.yml │ │ └── certificate.yml │ ├── aro │ │ ├── merge-rh-pull-secret │ │ │ ├── generator.yml │ │ │ ├── kustomization.yaml │ │ │ ├── merge-pull-secret-with-aro.yml │ │ │ ├── prepare-rh-pull-secret.yml │ │ │ └── propagate-rh-pull-secret.yml │ │ └── readme.md │ ├── cluster-autoscaling │ │ ├── clusterautoscaler.yml │ │ └── machineautoscaler.yml │ ├── cluster-proxy │ │ ├── README │ │ ├── example-root-ca.yml │ │ └── proxy.yml │ ├── clusterclaims │ │ ├── install-config-name.yml │ │ └── minor-version.yml │ ├── default-scheduler │ │ ├── bry-tam-worker-node-label.yml │ │ ├── scheduler.yml │ │ └── special-workload-worker-node-label.yml │ ├── etcd-backup │ │ ├── configmap.yml │ │ ├── cronjob.yml │ │ ├── namespace.yml │ │ ├── persistentvolumeclaim.yml │ │ ├── role.yml │ │ ├── rolebinding.yml │ │ └── serviceaccount.yml │ ├── etcd-encryption │ │ ├── apiserver.yml │ │ └── health │ │ │ ├── kubeapiserver.yml │ │ │ ├── oauthapiserver.yml │ │ │ └── openshiftapiserver.yml │ ├── generator.yml │ ├── image-registry │ │ ├── generator.yml │ │ ├── image-registry-s3-bundle-configmap.yml │ │ ├── imageregistry-config.yml │ │ ├── kustomization.yaml │ │ ├── objectbucketclaim.yml │ │ └── registry-s3-access-secret.yml │ ├── ingress │ │ ├── cert-ready.yml │ │ ├── certificate.yml │ │ ├── ingress-cert.yml │ │ ├── ingress.yml │ │ └── renew-default-cert │ │ │ ├── default-router-pod.yml │ │ │ ├── generator.yml │ │ │ ├── ingress-certificatepolicy.yml │ │ │ ├── ingress-operator-pod.yml │ │ │ ├── kustomization.yaml │ │ │ ├── label-router-ca-secret.yml │ │ │ ├── label-router-certs-default-secret.yml │ │ │ ├── router-ca-secret.yml │ │ │ └── router-certs-default-secret.yml │ ├── kubeletconfig │ │ ├── master.yml │ │ └── worker.yml │ ├── kustomization.yaml │ ├── machineconfigpools │ │ ├── infra.yml │ │ └── storage.yml │ ├── machinesets │ │ ├── infra-machineset.yml │ │ └── infra-storage-machineset.yml │ └── monitoring │ │ ├── cluster-monitoring-config.yml │ │ └── user-workload-monitoring-config.yml ├── cluster-health │ ├── README.md │ ├── clusteroperator.yml │ ├── clusterversion.yml │ ├── generator.yml │ ├── kustomization.yaml │ ├── machineconfigpool.yml │ └── node.yml ├── cluster-maintenance │ ├── README.md │ ├── alert-clusterrole-unused.yml │ ├── clean-clusterrolebinding.yml │ ├── clean-failed-createcontainererror.yml │ ├── clean-failed-nodeshutdown.yml │ ├── clean-groups.yml │ ├── clean-rolebinding.yml │ ├── copy-clusterrole.yml │ ├── generator.yml │ ├── kustomization.yaml │ └── operator-lifecycle │ │ ├── clean-installplans-upgrade.yml │ │ └── clean-olm-jobs-configmaps.yml ├── cluster-validations │ ├── generator.yml │ ├── kustomization.yaml │ ├── olm │ │ └── health │ │ │ ├── failed-installplan.yml │ │ │ ├── failed-job.yml │ │ │ ├── failed-subscription.yml │ │ │ └── readme │ └── security-configuration │ │ └── ensure-fips.yml ├── cluster-version │ ├── admin-acks-configmap.yml │ ├── clusterversion.yml │ ├── generator.yml │ └── kustomization.yaml ├── gatekeeper │ ├── kustomization.yaml │ ├── mutations │ │ ├── default-nodeselector │ │ │ ├── README │ │ │ ├── assign.yml │ │ │ └── generator.yml │ │ └── kustomization.yaml │ └── validations │ │ ├── kustomization.yaml │ │ ├── max-devspaces │ │ ├── constrainttemplate.yml │ │ ├── generator.yml │ │ └── maxdevworkspaces.yml │ │ ├── max-iamclusterbindings │ │ ├── README.md │ │ ├── constrainttemplate.yml │ │ ├── generator.yml │ │ └── maxiamclusterbindings.yml │ │ └── verify-deprecatedapi │ │ ├── constrainttemplate.yml │ │ ├── generator.yml │ │ ├── verifydeprecatedapi-1.16.yml │ │ ├── verifydeprecatedapi-1.22.yml │ │ ├── verifydeprecatedapi-1.25.yml │ │ ├── verifydeprecatedapi-1.26.yml │ │ ├── verifydeprecatedapi-1.27.yml │ │ └── verifydeprecatedapi-1.29.yml ├── kustomization.yaml ├── kustomize-configs │ ├── namespace-namereference.yml │ └── policyset-namereference.yml ├── misc-inprogress │ ├── approve-installplan.yml │ └── subscription-missing-installplan.yml ├── multicluster-data │ ├── coredns-secret.yml │ ├── generator.yml │ ├── hub-template-auth │ │ ├── clusterrole.yml │ │ ├── clusterrolebinding.yml │ │ ├── kustomization.yml │ │ └── serviceaccount.yml │ ├── kustomization.yaml │ └── managedclusterview.yml ├── operators │ ├── acm │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── multiclusterhub.yml │ │ └── operatorpolicy.yml │ ├── acs │ │ ├── README.md │ │ ├── central │ │ │ ├── central.yml │ │ │ ├── consolelink.yml │ │ │ └── init-bundle │ │ │ │ ├── expired-admission-control-tls.yml │ │ │ │ ├── expired-collector-tls.yml │ │ │ │ ├── expired-sensor-tls.yml │ │ │ │ ├── job.yml │ │ │ │ ├── role.yml │ │ │ │ ├── rolebinding.yml │ │ │ │ └── serviceaccount.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── central │ │ │ │ ├── central-status.yml │ │ │ │ └── init-bundle │ │ │ │ └── sensor-tls-cert.yml │ │ ├── kustomization.yaml │ │ ├── ns-rhacs-operator.yml │ │ ├── ns-stackrox.yml │ │ ├── operatorgroup.yml │ │ ├── operatorpolicy.yml │ │ ├── sensor │ │ │ ├── propagate-admission-control-tls.yml │ │ │ ├── propagate-collector-tls.yml │ │ │ ├── propagate-sensor-tls.yml │ │ │ ├── securedcluster.yml │ │ │ └── sensor-sync-tls-certs.yml │ │ └── subscription.yml │ ├── ansible-automation-platform │ │ ├── README.md │ │ ├── ansibleautomationplatform.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── ansible-automation-status.yml │ │ ├── hub-secret.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── noobaa-s3-serving-cert.yml │ │ ├── objectbucketclaim.yml │ │ └── operatorpolicy.yml │ ├── cert-manager │ │ ├── README.md │ │ ├── ca-clusterissuer │ │ │ ├── README.md │ │ │ ├── ca-clusterissuer-secret.yml │ │ │ └── ca-clusterissuer.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── cert-manager-status.yml │ │ ├── kustomization.yaml │ │ ├── monitoring │ │ │ ├── namespace.yml │ │ │ ├── role.yml │ │ │ ├── rolebinding.yml │ │ │ └── servicemonitor.yml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ └── trusted-ca-configmap.yml │ ├── cluster-logging │ │ ├── README.md │ │ ├── clusterlogging.yml │ │ ├── clusterrole.yml │ │ ├── clusterrolebinding.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── cluster-logging-status.yml │ │ ├── hub-template-auth │ │ │ ├── clusterrole.yml │ │ │ ├── clusterrolebinding.yml │ │ │ ├── kustomization.yml │ │ │ └── serviceaccount.yml │ │ ├── kustomization.yaml │ │ ├── logfilemetricexporter.yml │ │ ├── logs-6.x-migration │ │ │ ├── README.md │ │ │ ├── generator.yml │ │ │ ├── kustomization.yaml │ │ │ ├── remove-cluster-logging-forwarder.yml │ │ │ ├── remove-cluster-logging.yml │ │ │ ├── remove-logging-customresourcedefinition.yml │ │ │ ├── remove-logging-namespaces.yml │ │ │ ├── remove-logging-storage.yml │ │ │ ├── validate-elasticsearch-instance.yml │ │ │ └── validate-logging-version.yml │ │ ├── loki │ │ │ ├── health │ │ │ │ └── loki-status.yml │ │ │ ├── loki-secret.yml │ │ │ ├── lokistack.yml │ │ │ ├── noobaa-s3-serving-cert.yml │ │ │ └── objectbucketclaim.yml │ │ ├── multi-cluster-collector-token.yml │ │ ├── multi-cluster-generator.yml │ │ ├── multi-clusterlogging.yml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ ├── serviceaccount.yml │ │ └── uiplugin.yml │ ├── cluster-observability │ │ ├── README.md │ │ ├── generator.yml │ │ ├── health │ │ │ └── cluster-observability-status.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── compliance-operator │ │ ├── README.md │ │ ├── example-scan │ │ │ ├── scansetting.yml │ │ │ └── scansettingbinding.yml │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── data-foundation │ │ ├── README.md │ │ ├── console.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── odf-status.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ ├── storagecluster.yml │ │ └── storagesystem.yml │ ├── developer-hub │ │ ├── README.md │ │ ├── acm │ │ │ └── rhdh-managedservice-account.yml │ │ ├── app-config-rhdh.yml │ │ ├── backstage.yml │ │ ├── dynamic-plugins-rhdh.yml │ │ ├── generator.yml │ │ ├── hub-template-auth │ │ │ ├── clusterrolebinding.yml │ │ │ └── serviceaccount.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ └── secrets-rhdh.yml │ ├── external-secrets │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── operatorconfig.yml │ │ └── operatorpolicy.yml │ ├── file-integrity │ │ ├── README.md │ │ ├── fileintegrity.yml │ │ ├── fileintegritynodestatus-cleaner.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── fileintegritynodestatus-failed.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── gatekeeper │ │ ├── README.md │ │ ├── gatekeeper.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── gatekeeper-status.yml │ │ ├── kustomization.yaml │ │ ├── metrics-service.yml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ ├── servicemonitor.yml │ │ ├── sync-configmap.yml │ │ └── violation-events.yml │ ├── gitops │ │ ├── README.md │ │ ├── applicationset-config │ │ │ └── managedclustersetbinding.yml │ │ ├── argocd-instances │ │ │ ├── argo-server-host.yml │ │ │ ├── base │ │ │ │ ├── argocd.yml │ │ │ │ ├── consolelink.yml │ │ │ │ ├── kustomization.yaml │ │ │ │ └── namespace.yml │ │ │ ├── default │ │ │ │ ├── argo-admin-crb.yml │ │ │ │ ├── argocd.yml │ │ │ │ ├── consolelink.yml │ │ │ │ ├── gitopsservice.yml │ │ │ │ └── kustomization.yaml │ │ │ └── dev │ │ │ │ ├── argocd.yml │ │ │ │ ├── consolelink.yml │ │ │ │ ├── kustomization.yaml │ │ │ │ └── rolloutmanager.yml │ │ ├── argocd-ns.yml │ │ ├── argocd-policygenerator.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── argocd-status.yml │ │ ├── kustomization.yaml │ │ ├── migrate-gitops-1.10.yml │ │ ├── operator-ns.yml │ │ └── operatorpolicy.yml │ ├── kiali │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── kustomization.yaml │ ├── loki │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── network-observability │ │ ├── README.md │ │ ├── console.yml │ │ ├── flowcollector.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── network-observability-status.yml │ │ ├── kustomization.yaml │ │ ├── loki │ │ │ ├── health │ │ │ │ └── loki-status.yml │ │ │ ├── loki-secret.yml │ │ │ ├── lokistack.yml │ │ │ ├── noobaa-s3-serving-cert.yml │ │ │ └── objectbucketclaim.yml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── opentelemetry │ │ ├── README.md │ │ ├── clusterrole.yml │ │ ├── clusterrolebinding.yml │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── servicemesh │ │ ├── README.md │ │ ├── controlplane │ │ │ ├── istio.yml │ │ │ ├── istiocni.yml │ │ │ ├── kiali-clusterrolebinding.yml │ │ │ ├── kiali.yml │ │ │ ├── namespace-cni.yml │ │ │ ├── namespace.yml │ │ │ ├── ossmconsole.yml │ │ │ ├── podmonitor.yml │ │ │ ├── servicemonitor.yml │ │ │ ├── telemetry.yml │ │ │ └── user-workload-access-networkpolicy.yml │ │ ├── generator.yml │ │ ├── health │ │ │ └── istiocni-status.yml │ │ ├── ingress │ │ │ ├── deployment.yml │ │ │ ├── horizontalpodautoscaler.yml │ │ │ ├── namespace.yml │ │ │ ├── networkpolicy.yml │ │ │ ├── poddisruptionbudget.yml │ │ │ ├── role.yml │ │ │ ├── rolebinding.yml │ │ │ ├── service.yml │ │ │ └── serviceaccount.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ └── tracing │ │ │ ├── namespace.yml │ │ │ ├── objectbucketclaim.yml │ │ │ ├── opentelemetry-rolebinding.yml │ │ │ ├── opentelemetrycollector.yml │ │ │ ├── tempo-s3-access-secret.yml │ │ │ ├── tempo-s3-bundle-configmap.yml │ │ │ ├── tempo-s3-tls-secret.yml │ │ │ ├── tempo-tenant-readerbinding.yml │ │ │ ├── tempo-tenant-readerrole.yml │ │ │ ├── tempo-tenant-writerrole.yml │ │ │ └── tempostack.yml │ ├── talm │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ ├── tekton │ │ ├── README.md │ │ ├── generator.yml │ │ ├── health │ │ │ └── tekton-status.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ ├── operatorpolicy.yml │ │ ├── pull-secret-auth │ │ │ ├── secret.yml │ │ │ └── serviceaccount.yml │ │ ├── tektonchains.yml │ │ └── tektonconfig.yml │ ├── tempo │ │ ├── README.md │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── namespace.yml │ │ └── operatorpolicy.yml │ └── workload-availability │ │ ├── README.md │ │ ├── far-nhc-remediation │ │ ├── far-template.yml │ │ ├── mdr-template.yml │ │ └── nodehealthcheck.yml │ │ ├── fence-agent-operatorpolicy.yml │ │ ├── generator.yml │ │ ├── kustomization.yaml │ │ ├── machine-deletion-operatorpolicy.yml │ │ ├── namespace.yml │ │ ├── node-healthcheck-operatorpolicy.yml │ │ ├── node-remediation-console.yml │ │ ├── self-node-operatorpolicy.yml │ │ └── snr-nhc-remediation │ │ ├── mdr-template.yml │ │ ├── nodehealthcheck.yml │ │ └── snr-outofservicetaint-template.yml └── security │ ├── cve-mitigation │ ├── cve-2024-7387_cve-2024-45496 │ │ └── remove-global-access.yml │ ├── generator.yml │ └── kustomization.yaml │ └── kustomization.yaml └── template-examples ├── README.md ├── gitops-multicluster ├── README.md ├── argocd-instances │ ├── base │ │ ├── argocd.yml │ │ ├── consolelink.yml │ │ ├── kustomization.yaml │ │ └── namespace.yml │ ├── team-fozzie │ │ ├── argocd.yml │ │ ├── cluster-secrets.yml │ │ ├── consolelink.yml │ │ ├── kustomization.yaml │ │ ├── managedserviceaccount.yml │ │ ├── propagate-cluster-secrets.yml │ │ └── rolloutmanager.yml │ └── team-scooter │ │ ├── argocd.yml │ │ ├── cluster-secrets.yml │ │ ├── consolelink.yml │ │ ├── kustomization.yaml │ │ ├── managedserviceaccount.yml │ │ ├── propagate-cluster-secrets.yml │ │ └── rolloutmanager.yml ├── generator.yml └── kustomization.yaml ├── kustomize-monitoring-config ├── README.md ├── clusters │ ├── ocpad │ │ ├── kustomization.yaml │ │ └── values.yaml │ └── ocpap │ │ ├── kustomization.yaml │ │ └── values.yaml └── components │ └── cluster-monitoring-config │ ├── .helmignore │ ├── Chart.yaml │ ├── templates │ ├── _helpers.tpl │ ├── cluster-monitoring-config.yml │ └── user-workload-monitoring-config.yml │ └── values.yaml └── namespace-config-operator ├── README.md └── clusterrolebinding-wildcard-groups ├── README.md ├── group-name-matches-groups.yml └── group-name-matches-namespace.yml /.github/workflows/worklows.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/.github/workflows/worklows.yaml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/.gitignore -------------------------------------------------------------------------------- /.gitleaks.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/.gitleaks.toml -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/README.md -------------------------------------------------------------------------------- /docs/policy-list.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/docs/policy-list.md -------------------------------------------------------------------------------- /docs/policy-prerequisites.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/docs/policy-prerequisites.md -------------------------------------------------------------------------------- /environments/dev/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/dev/kustomization.yaml -------------------------------------------------------------------------------- /environments/dev/kustomize-configs/policyset-suffixer.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/dev/kustomize-configs/policyset-suffixer.yml -------------------------------------------------------------------------------- /environments/dev/managedclusterset.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/dev/managedclusterset.yml -------------------------------------------------------------------------------- /environments/prod/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/prod/kustomization.yaml -------------------------------------------------------------------------------- /environments/prod/kustomize-configs/policyset-suffixer.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/prod/kustomize-configs/policyset-suffixer.yml -------------------------------------------------------------------------------- /environments/prod/managedclusterset.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/environments/prod/managedclusterset.yml -------------------------------------------------------------------------------- /kustomize-configs/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/kustomize-configs/kustomization.yaml -------------------------------------------------------------------------------- /kustomize-configs/namespace-namereference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/kustomize-configs/namespace-namereference.yml -------------------------------------------------------------------------------- /kustomize-configs/policyset-namereference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/kustomize-configs/policyset-namereference.yml -------------------------------------------------------------------------------- /kustomize-configs/set-clusterset-references.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/kustomize-configs/set-clusterset-references.yml -------------------------------------------------------------------------------- /local-cluster/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/local-cluster/kustomization.yaml -------------------------------------------------------------------------------- /local-cluster/managedcluster.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/local-cluster/managedcluster.yml -------------------------------------------------------------------------------- /policies/acm-configs/ensure-placement-toleration/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/ensure-placement-toleration/README.md -------------------------------------------------------------------------------- /policies/acm-configs/ensure-placement-toleration/ensure-placement-toleration.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/ensure-placement-toleration/ensure-placement-toleration.yml -------------------------------------------------------------------------------- /policies/acm-configs/ensure-placement-toleration/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/ensure-placement-toleration/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/ensure-placement-toleration/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/ensure-placement-toleration/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/feature-flags-placement/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/feature-flags-placement/README.md -------------------------------------------------------------------------------- /policies/acm-configs/feature-flags-placement/feature-flag-placements.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/feature-flags-placement/feature-flag-placements.yml -------------------------------------------------------------------------------- /policies/acm-configs/feature-flags-placement/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/feature-flags-placement/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/feature-flags-placement/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/feature-flags-placement/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/README.md -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/infra-addondeploymentconfig.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/infra-addondeploymentconfig.yml -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/infra-selector-tolerations.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/infra-selector-tolerations.yml -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/klusterlet-infra/worker-addondeploymentconfig.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/klusterlet-infra/worker-addondeploymentconfig.yml -------------------------------------------------------------------------------- /policies/acm-configs/kubeadmin-config-trustca/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/kubeadmin-config-trustca/README.md -------------------------------------------------------------------------------- /policies/acm-configs/kubeadmin-config-trustca/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/kubeadmin-config-trustca/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/kubeadmin-config-trustca/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/kubeadmin-config-trustca/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/kubeadmin-config-trustca/update-kubeadmin-trustca.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/kubeadmin-config-trustca/update-kubeadmin-trustca.yml -------------------------------------------------------------------------------- /policies/acm-configs/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/managedserviceaccount/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/managedserviceaccount/README.md -------------------------------------------------------------------------------- /policies/acm-configs/managedserviceaccount/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/managedserviceaccount/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/managedserviceaccount/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/managedserviceaccount/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/managedserviceaccount/managedserviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/managedserviceaccount/managedserviceaccount.yml -------------------------------------------------------------------------------- /policies/acm-configs/managedserviceaccount/multiclusterengine.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/managedserviceaccount/multiclusterengine.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/README.md -------------------------------------------------------------------------------- /policies/acm-configs/observability/console.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/console.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/health/acm-observability-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/health/acm-observability-status.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/observability/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/namespace.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/noobaa-cert-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/noobaa-cert-secret.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/observability.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/observability.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/pull-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/pull-secret.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/thanos-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/thanos-secret.yml -------------------------------------------------------------------------------- /policies/acm-configs/observability/uiplugin.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/observability/uiplugin.yml -------------------------------------------------------------------------------- /policies/acm-configs/policy-alerts/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/policy-alerts/README.md -------------------------------------------------------------------------------- /policies/acm-configs/policy-alerts/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/policy-alerts/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/policy-alerts/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/policy-alerts/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/policy-alerts/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/policy-alerts/namespace.yml -------------------------------------------------------------------------------- /policies/acm-configs/policy-alerts/policy-prometheusrule.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/policy-alerts/policy-prometheusrule.yml -------------------------------------------------------------------------------- /policies/acm-configs/remove-kubeadmin-pass/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/remove-kubeadmin-pass/README.md -------------------------------------------------------------------------------- /policies/acm-configs/remove-kubeadmin-pass/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/remove-kubeadmin-pass/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/remove-kubeadmin-pass/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/remove-kubeadmin-pass/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-configs/remove-kubeadmin-pass/remove-kubeadmin.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/remove-kubeadmin-pass/remove-kubeadmin.yml -------------------------------------------------------------------------------- /policies/acm-configs/set-cluster-debug-mode/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/set-cluster-debug-mode/README.md -------------------------------------------------------------------------------- /policies/acm-configs/set-cluster-debug-mode/cluster-debug-mode.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/set-cluster-debug-mode/cluster-debug-mode.yml -------------------------------------------------------------------------------- /policies/acm-configs/set-cluster-debug-mode/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/set-cluster-debug-mode/generator.yml -------------------------------------------------------------------------------- /policies/acm-configs/set-cluster-debug-mode/health/managedcluster-debug.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/set-cluster-debug-mode/health/managedcluster-debug.yml -------------------------------------------------------------------------------- /policies/acm-configs/set-cluster-debug-mode/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-configs/set-cluster-debug-mode/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-placements/env-bound-hub-placement.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/env-bound-hub-placement.yml -------------------------------------------------------------------------------- /policies/acm-placements/env-bound-nohub-placement.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/env-bound-nohub-placement.yml -------------------------------------------------------------------------------- /policies/acm-placements/env-bound-placement.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/env-bound-placement.yml -------------------------------------------------------------------------------- /policies/acm-placements/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/kustomization.yaml -------------------------------------------------------------------------------- /policies/acm-placements/managedclustersetbinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/managedclustersetbinding.yml -------------------------------------------------------------------------------- /policies/acm-placements/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/acm-placements/namespace.yml -------------------------------------------------------------------------------- /policies/application-defaults/app-reload/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/app-reload/README.md -------------------------------------------------------------------------------- /policies/application-defaults/app-reload/advanced/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/app-reload/advanced/generator.yml -------------------------------------------------------------------------------- /policies/application-defaults/app-reload/advanced/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/app-reload/advanced/kustomization.yaml -------------------------------------------------------------------------------- /policies/application-defaults/app-reload/advanced/reload-tracker-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/app-reload/advanced/reload-tracker-configmap.yml -------------------------------------------------------------------------------- /policies/application-defaults/app-reload/advanced/reload-tracker-deployment.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/app-reload/advanced/reload-tracker-deployment.yml -------------------------------------------------------------------------------- /policies/application-defaults/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/generator.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/README.md -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/base/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/base/argocd.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/base/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/base/consolelink.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/base/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/base/kustomization.yaml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/base/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/base/namespace.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/argocd.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/cluster-secrets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/cluster-secrets.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/consolelink.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/kustomization.yaml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/managedserviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/managedserviceaccount.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/rolloutmanager.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/argocd-instances/team-scooter/rolloutmanager.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/generator.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/hub-template-auth/clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/hub-template-auth/clusterrole.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/hub-template-auth/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/hub-template-auth/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/hub-template-auth/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/hub-template-auth/kustomization.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/hub-template-auth/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/hub-template-auth/serviceaccount.yml -------------------------------------------------------------------------------- /policies/application-defaults/gitops-multicluster/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/gitops-multicluster/kustomization.yaml -------------------------------------------------------------------------------- /policies/application-defaults/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/kustomization.yaml -------------------------------------------------------------------------------- /policies/application-defaults/network/block-all-networkpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/application-defaults/network/block-all-networkpolicy.yml -------------------------------------------------------------------------------- /policies/cluster-configs/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/README.md -------------------------------------------------------------------------------- /policies/cluster-configs/apiserver-cert/README: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /policies/cluster-configs/apiserver-cert/apiserver.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/apiserver-cert/apiserver.yml -------------------------------------------------------------------------------- /policies/cluster-configs/apiserver-cert/cert-ready.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/apiserver-cert/cert-ready.yml -------------------------------------------------------------------------------- /policies/cluster-configs/apiserver-cert/certificate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/apiserver-cert/certificate.yml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/merge-rh-pull-secret/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/merge-rh-pull-secret/generator.yml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/merge-rh-pull-secret/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/merge-rh-pull-secret/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/merge-rh-pull-secret/merge-pull-secret-with-aro.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/merge-rh-pull-secret/merge-pull-secret-with-aro.yml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/merge-rh-pull-secret/prepare-rh-pull-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/merge-rh-pull-secret/prepare-rh-pull-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/merge-rh-pull-secret/propagate-rh-pull-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/merge-rh-pull-secret/propagate-rh-pull-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/aro/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/aro/readme.md -------------------------------------------------------------------------------- /policies/cluster-configs/cluster-autoscaling/clusterautoscaler.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/cluster-autoscaling/clusterautoscaler.yml -------------------------------------------------------------------------------- /policies/cluster-configs/cluster-autoscaling/machineautoscaler.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/cluster-autoscaling/machineautoscaler.yml -------------------------------------------------------------------------------- /policies/cluster-configs/cluster-proxy/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/cluster-proxy/README -------------------------------------------------------------------------------- /policies/cluster-configs/cluster-proxy/example-root-ca.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/cluster-proxy/example-root-ca.yml -------------------------------------------------------------------------------- /policies/cluster-configs/cluster-proxy/proxy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/cluster-proxy/proxy.yml -------------------------------------------------------------------------------- /policies/cluster-configs/clusterclaims/install-config-name.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/clusterclaims/install-config-name.yml -------------------------------------------------------------------------------- /policies/cluster-configs/clusterclaims/minor-version.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/clusterclaims/minor-version.yml -------------------------------------------------------------------------------- /policies/cluster-configs/default-scheduler/bry-tam-worker-node-label.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/default-scheduler/bry-tam-worker-node-label.yml -------------------------------------------------------------------------------- /policies/cluster-configs/default-scheduler/scheduler.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/default-scheduler/scheduler.yml -------------------------------------------------------------------------------- /policies/cluster-configs/default-scheduler/special-workload-worker-node-label.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/default-scheduler/special-workload-worker-node-label.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/configmap.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/cronjob.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/cronjob.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/namespace.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/persistentvolumeclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/persistentvolumeclaim.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/role.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/role.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/rolebinding.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-backup/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-backup/serviceaccount.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-encryption/apiserver.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-encryption/apiserver.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-encryption/health/kubeapiserver.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-encryption/health/kubeapiserver.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-encryption/health/oauthapiserver.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-encryption/health/oauthapiserver.yml -------------------------------------------------------------------------------- /policies/cluster-configs/etcd-encryption/health/openshiftapiserver.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/etcd-encryption/health/openshiftapiserver.yml -------------------------------------------------------------------------------- /policies/cluster-configs/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/generator.yml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/generator.yml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/image-registry-s3-bundle-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/image-registry-s3-bundle-configmap.yml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/imageregistry-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/imageregistry-config.yml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/cluster-configs/image-registry/registry-s3-access-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/image-registry/registry-s3-access-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/cert-ready.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/cert-ready.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/certificate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/certificate.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/ingress-cert.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/ingress-cert.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/ingress.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/ingress.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/default-router-pod.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/default-router-pod.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/generator.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/ingress-certificatepolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/ingress-certificatepolicy.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/ingress-operator-pod.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/ingress-operator-pod.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/label-router-ca-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/label-router-ca-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/label-router-certs-default-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/label-router-certs-default-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/router-ca-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/router-ca-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/ingress/renew-default-cert/router-certs-default-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/ingress/renew-default-cert/router-certs-default-secret.yml -------------------------------------------------------------------------------- /policies/cluster-configs/kubeletconfig/master.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/kubeletconfig/master.yml -------------------------------------------------------------------------------- /policies/cluster-configs/kubeletconfig/worker.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/kubeletconfig/worker.yml -------------------------------------------------------------------------------- /policies/cluster-configs/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-configs/machineconfigpools/infra.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/machineconfigpools/infra.yml -------------------------------------------------------------------------------- /policies/cluster-configs/machineconfigpools/storage.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/machineconfigpools/storage.yml -------------------------------------------------------------------------------- /policies/cluster-configs/machinesets/infra-machineset.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/machinesets/infra-machineset.yml -------------------------------------------------------------------------------- /policies/cluster-configs/machinesets/infra-storage-machineset.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/machinesets/infra-storage-machineset.yml -------------------------------------------------------------------------------- /policies/cluster-configs/monitoring/cluster-monitoring-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/monitoring/cluster-monitoring-config.yml -------------------------------------------------------------------------------- /policies/cluster-configs/monitoring/user-workload-monitoring-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-configs/monitoring/user-workload-monitoring-config.yml -------------------------------------------------------------------------------- /policies/cluster-health/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/README.md -------------------------------------------------------------------------------- /policies/cluster-health/clusteroperator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/clusteroperator.yml -------------------------------------------------------------------------------- /policies/cluster-health/clusterversion.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/clusterversion.yml -------------------------------------------------------------------------------- /policies/cluster-health/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/generator.yml -------------------------------------------------------------------------------- /policies/cluster-health/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-health/machineconfigpool.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/machineconfigpool.yml -------------------------------------------------------------------------------- /policies/cluster-health/node.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-health/node.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/README.md -------------------------------------------------------------------------------- /policies/cluster-maintenance/alert-clusterrole-unused.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/alert-clusterrole-unused.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/clean-clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/clean-clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/clean-failed-createcontainererror.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/clean-failed-createcontainererror.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/clean-failed-nodeshutdown.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/clean-failed-nodeshutdown.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/clean-groups.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/clean-groups.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/clean-rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/clean-rolebinding.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/copy-clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/copy-clusterrole.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/generator.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-maintenance/operator-lifecycle/clean-installplans-upgrade.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/operator-lifecycle/clean-installplans-upgrade.yml -------------------------------------------------------------------------------- /policies/cluster-maintenance/operator-lifecycle/clean-olm-jobs-configmaps.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-maintenance/operator-lifecycle/clean-olm-jobs-configmaps.yml -------------------------------------------------------------------------------- /policies/cluster-validations/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/generator.yml -------------------------------------------------------------------------------- /policies/cluster-validations/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/kustomization.yaml -------------------------------------------------------------------------------- /policies/cluster-validations/olm/health/failed-installplan.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/olm/health/failed-installplan.yml -------------------------------------------------------------------------------- /policies/cluster-validations/olm/health/failed-job.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/olm/health/failed-job.yml -------------------------------------------------------------------------------- /policies/cluster-validations/olm/health/failed-subscription.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/olm/health/failed-subscription.yml -------------------------------------------------------------------------------- /policies/cluster-validations/olm/health/readme: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/olm/health/readme -------------------------------------------------------------------------------- /policies/cluster-validations/security-configuration/ensure-fips.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-validations/security-configuration/ensure-fips.yml -------------------------------------------------------------------------------- /policies/cluster-version/admin-acks-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-version/admin-acks-configmap.yml -------------------------------------------------------------------------------- /policies/cluster-version/clusterversion.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-version/clusterversion.yml -------------------------------------------------------------------------------- /policies/cluster-version/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-version/generator.yml -------------------------------------------------------------------------------- /policies/cluster-version/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/cluster-version/kustomization.yaml -------------------------------------------------------------------------------- /policies/gatekeeper/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/kustomization.yaml -------------------------------------------------------------------------------- /policies/gatekeeper/mutations/default-nodeselector/README: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /policies/gatekeeper/mutations/default-nodeselector/assign.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/mutations/default-nodeselector/assign.yml -------------------------------------------------------------------------------- /policies/gatekeeper/mutations/default-nodeselector/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/mutations/default-nodeselector/generator.yml -------------------------------------------------------------------------------- /policies/gatekeeper/mutations/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/mutations/kustomization.yaml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/kustomization.yaml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-devspaces/constrainttemplate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-devspaces/constrainttemplate.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-devspaces/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-devspaces/generator.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-devspaces/maxdevworkspaces.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-devspaces/maxdevworkspaces.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-iamclusterbindings/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-iamclusterbindings/README.md -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-iamclusterbindings/constrainttemplate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-iamclusterbindings/constrainttemplate.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-iamclusterbindings/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-iamclusterbindings/generator.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/max-iamclusterbindings/maxiamclusterbindings.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/max-iamclusterbindings/maxiamclusterbindings.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/constrainttemplate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/constrainttemplate.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/generator.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.16.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.16.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.22.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.22.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.25.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.25.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.26.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.26.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.27.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.27.yml -------------------------------------------------------------------------------- /policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.29.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/gatekeeper/validations/verify-deprecatedapi/verifydeprecatedapi-1.29.yml -------------------------------------------------------------------------------- /policies/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/kustomization.yaml -------------------------------------------------------------------------------- /policies/kustomize-configs/namespace-namereference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/kustomize-configs/namespace-namereference.yml -------------------------------------------------------------------------------- /policies/kustomize-configs/policyset-namereference.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/kustomize-configs/policyset-namereference.yml -------------------------------------------------------------------------------- /policies/misc-inprogress/approve-installplan.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/misc-inprogress/approve-installplan.yml -------------------------------------------------------------------------------- /policies/misc-inprogress/subscription-missing-installplan.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/misc-inprogress/subscription-missing-installplan.yml -------------------------------------------------------------------------------- /policies/multicluster-data/coredns-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/coredns-secret.yml -------------------------------------------------------------------------------- /policies/multicluster-data/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/generator.yml -------------------------------------------------------------------------------- /policies/multicluster-data/hub-template-auth/clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/hub-template-auth/clusterrole.yml -------------------------------------------------------------------------------- /policies/multicluster-data/hub-template-auth/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/hub-template-auth/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/multicluster-data/hub-template-auth/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/hub-template-auth/kustomization.yml -------------------------------------------------------------------------------- /policies/multicluster-data/hub-template-auth/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/hub-template-auth/serviceaccount.yml -------------------------------------------------------------------------------- /policies/multicluster-data/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/kustomization.yaml -------------------------------------------------------------------------------- /policies/multicluster-data/managedclusterview.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/multicluster-data/managedclusterview.yml -------------------------------------------------------------------------------- /policies/operators/acm/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acm/README.md -------------------------------------------------------------------------------- /policies/operators/acm/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acm/generator.yml -------------------------------------------------------------------------------- /policies/operators/acm/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acm/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/acm/multiclusterhub.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acm/multiclusterhub.yml -------------------------------------------------------------------------------- /policies/operators/acm/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acm/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/acs/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/README.md -------------------------------------------------------------------------------- /policies/operators/acs/central/central.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/central.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/consolelink.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/expired-admission-control-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/expired-admission-control-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/expired-collector-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/expired-collector-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/expired-sensor-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/expired-sensor-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/job.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/job.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/role.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/role.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/rolebinding.yml -------------------------------------------------------------------------------- /policies/operators/acs/central/init-bundle/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/central/init-bundle/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/acs/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/generator.yml -------------------------------------------------------------------------------- /policies/operators/acs/health/central/central-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/health/central/central-status.yml -------------------------------------------------------------------------------- /policies/operators/acs/health/central/init-bundle/sensor-tls-cert.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/health/central/init-bundle/sensor-tls-cert.yml -------------------------------------------------------------------------------- /policies/operators/acs/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/acs/ns-rhacs-operator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/ns-rhacs-operator.yml -------------------------------------------------------------------------------- /policies/operators/acs/ns-stackrox.yml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: Namespace 4 | metadata: 5 | name: stackrox 6 | -------------------------------------------------------------------------------- /policies/operators/acs/operatorgroup.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/operatorgroup.yml -------------------------------------------------------------------------------- /policies/operators/acs/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/acs/sensor/propagate-admission-control-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/sensor/propagate-admission-control-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/sensor/propagate-collector-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/sensor/propagate-collector-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/sensor/propagate-sensor-tls.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/sensor/propagate-sensor-tls.yml -------------------------------------------------------------------------------- /policies/operators/acs/sensor/securedcluster.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/sensor/securedcluster.yml -------------------------------------------------------------------------------- /policies/operators/acs/sensor/sensor-sync-tls-certs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/sensor/sensor-sync-tls-certs.yml -------------------------------------------------------------------------------- /policies/operators/acs/subscription.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/acs/subscription.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/README.md -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/ansibleautomationplatform.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/ansibleautomationplatform.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/generator.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/health/ansible-automation-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/health/ansible-automation-status.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/hub-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/hub-secret.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/namespace.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/noobaa-s3-serving-cert.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/noobaa-s3-serving-cert.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/operators/ansible-automation-platform/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/ansible-automation-platform/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/README.md -------------------------------------------------------------------------------- /policies/operators/cert-manager/ca-clusterissuer/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/ca-clusterissuer/README.md -------------------------------------------------------------------------------- /policies/operators/cert-manager/ca-clusterissuer/ca-clusterissuer-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/ca-clusterissuer/ca-clusterissuer-secret.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/ca-clusterissuer/ca-clusterissuer.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/ca-clusterissuer/ca-clusterissuer.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/generator.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/health/cert-manager-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/health/cert-manager-status.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/cert-manager/monitoring/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/monitoring/namespace.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/monitoring/role.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/monitoring/role.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/monitoring/rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/monitoring/rolebinding.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/monitoring/servicemonitor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/monitoring/servicemonitor.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/namespace.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/cert-manager/trusted-ca-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cert-manager/trusted-ca-configmap.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/README.md -------------------------------------------------------------------------------- /policies/operators/cluster-logging/clusterlogging.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/clusterlogging.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/clusterrole.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/generator.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/health/cluster-logging-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/health/cluster-logging-status.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/hub-template-auth/clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/hub-template-auth/clusterrole.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/hub-template-auth/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/hub-template-auth/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/hub-template-auth/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/hub-template-auth/kustomization.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/hub-template-auth/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/hub-template-auth/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logfilemetricexporter.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logfilemetricexporter.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/README.md -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/generator.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/remove-cluster-logging-forwarder.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/remove-cluster-logging-forwarder.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/remove-cluster-logging.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/remove-cluster-logging.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/remove-logging-customresourcedefinition.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/remove-logging-customresourcedefinition.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/remove-logging-namespaces.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/remove-logging-namespaces.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/remove-logging-storage.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/remove-logging-storage.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/validate-elasticsearch-instance.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/validate-elasticsearch-instance.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/logs-6.x-migration/validate-logging-version.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/logs-6.x-migration/validate-logging-version.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/loki/health/loki-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/loki/health/loki-status.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/loki/loki-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/loki/loki-secret.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/loki/lokistack.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/loki/lokistack.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/loki/noobaa-s3-serving-cert.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/loki/noobaa-s3-serving-cert.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/loki/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/loki/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/multi-cluster-collector-token.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/multi-cluster-collector-token.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/multi-cluster-generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/multi-cluster-generator.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/multi-clusterlogging.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/multi-clusterlogging.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/namespace.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/cluster-logging/uiplugin.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-logging/uiplugin.yml -------------------------------------------------------------------------------- /policies/operators/cluster-observability/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/README.md -------------------------------------------------------------------------------- /policies/operators/cluster-observability/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/generator.yml -------------------------------------------------------------------------------- /policies/operators/cluster-observability/health/cluster-observability-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/health/cluster-observability-status.yml -------------------------------------------------------------------------------- /policies/operators/cluster-observability/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/cluster-observability/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/namespace.yml -------------------------------------------------------------------------------- /policies/operators/cluster-observability/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/cluster-observability/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/README.md -------------------------------------------------------------------------------- /policies/operators/compliance-operator/example-scan/scansetting.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/example-scan/scansetting.yml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/example-scan/scansettingbinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/example-scan/scansettingbinding.yml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/generator.yml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/namespace.yml -------------------------------------------------------------------------------- /policies/operators/compliance-operator/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/compliance-operator/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/README.md -------------------------------------------------------------------------------- /policies/operators/data-foundation/console.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/console.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/generator.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/health/odf-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/health/odf-status.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/data-foundation/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/namespace.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/storagecluster.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/storagecluster.yml -------------------------------------------------------------------------------- /policies/operators/data-foundation/storagesystem.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/data-foundation/storagesystem.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/README.md -------------------------------------------------------------------------------- /policies/operators/developer-hub/acm/rhdh-managedservice-account.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/acm/rhdh-managedservice-account.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/app-config-rhdh.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/app-config-rhdh.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/backstage.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/backstage.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/dynamic-plugins-rhdh.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/dynamic-plugins-rhdh.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/generator.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/hub-template-auth/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/hub-template-auth/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/hub-template-auth/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/hub-template-auth/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/developer-hub/namespace.yml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: Namespace 4 | metadata: 5 | name: developer-hub 6 | -------------------------------------------------------------------------------- /policies/operators/developer-hub/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/developer-hub/secrets-rhdh.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/developer-hub/secrets-rhdh.yml -------------------------------------------------------------------------------- /policies/operators/external-secrets/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/README.md -------------------------------------------------------------------------------- /policies/operators/external-secrets/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/generator.yml -------------------------------------------------------------------------------- /policies/operators/external-secrets/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/external-secrets/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/namespace.yml -------------------------------------------------------------------------------- /policies/operators/external-secrets/operatorconfig.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/operatorconfig.yml -------------------------------------------------------------------------------- /policies/operators/external-secrets/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/external-secrets/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/README.md -------------------------------------------------------------------------------- /policies/operators/file-integrity/fileintegrity.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/fileintegrity.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/fileintegritynodestatus-cleaner.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/fileintegritynodestatus-cleaner.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/generator.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/health/fileintegritynodestatus-failed.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/health/fileintegritynodestatus-failed.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/file-integrity/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/namespace.yml -------------------------------------------------------------------------------- /policies/operators/file-integrity/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/file-integrity/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/README.md -------------------------------------------------------------------------------- /policies/operators/gatekeeper/gatekeeper.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/gatekeeper.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/generator.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/health/gatekeeper-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/health/gatekeeper-status.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/metrics-service.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/metrics-service.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/namespace.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/servicemonitor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/servicemonitor.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/sync-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/sync-configmap.yml -------------------------------------------------------------------------------- /policies/operators/gatekeeper/violation-events.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gatekeeper/violation-events.yml -------------------------------------------------------------------------------- /policies/operators/gitops/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/README.md -------------------------------------------------------------------------------- /policies/operators/gitops/applicationset-config/managedclustersetbinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/applicationset-config/managedclustersetbinding.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/argo-server-host.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/argo-server-host.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/base/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/base/argocd.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/base/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/base/consolelink.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/base/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/base/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/base/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/base/namespace.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/default/argo-admin-crb.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/default/argo-admin-crb.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/default/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/default/argocd.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/default/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/default/consolelink.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/default/gitopsservice.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/default/gitopsservice.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/default/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/default/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/dev/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/dev/argocd.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/dev/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/dev/consolelink.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/dev/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/dev/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-instances/dev/rolloutmanager.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-instances/dev/rolloutmanager.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-ns.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-ns.yml -------------------------------------------------------------------------------- /policies/operators/gitops/argocd-policygenerator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/argocd-policygenerator.yml -------------------------------------------------------------------------------- /policies/operators/gitops/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/generator.yml -------------------------------------------------------------------------------- /policies/operators/gitops/health/argocd-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/health/argocd-status.yml -------------------------------------------------------------------------------- /policies/operators/gitops/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/gitops/migrate-gitops-1.10.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/migrate-gitops-1.10.yml -------------------------------------------------------------------------------- /policies/operators/gitops/operator-ns.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/operator-ns.yml -------------------------------------------------------------------------------- /policies/operators/gitops/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/gitops/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/kiali/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kiali/README.md -------------------------------------------------------------------------------- /policies/operators/kiali/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kiali/generator.yml -------------------------------------------------------------------------------- /policies/operators/kiali/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kiali/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/kiali/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kiali/namespace.yml -------------------------------------------------------------------------------- /policies/operators/kiali/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kiali/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/loki/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/loki/README.md -------------------------------------------------------------------------------- /policies/operators/loki/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/loki/generator.yml -------------------------------------------------------------------------------- /policies/operators/loki/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/loki/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/loki/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/loki/namespace.yml -------------------------------------------------------------------------------- /policies/operators/loki/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/loki/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/README.md -------------------------------------------------------------------------------- /policies/operators/network-observability/console.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/console.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/flowcollector.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/flowcollector.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/generator.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/health/network-observability-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/health/network-observability-status.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/network-observability/loki/health/loki-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/loki/health/loki-status.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/loki/loki-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/loki/loki-secret.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/loki/lokistack.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/loki/lokistack.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/loki/noobaa-s3-serving-cert.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/loki/noobaa-s3-serving-cert.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/loki/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/loki/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/namespace.yml -------------------------------------------------------------------------------- /policies/operators/network-observability/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/network-observability/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/README.md -------------------------------------------------------------------------------- /policies/operators/opentelemetry/clusterrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/clusterrole.yml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/generator.yml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/namespace.yml -------------------------------------------------------------------------------- /policies/operators/opentelemetry/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/opentelemetry/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/README.md -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/istio.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/istio.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/istiocni.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/istiocni.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/kiali-clusterrolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/kiali-clusterrolebinding.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/kiali.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/kiali.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/namespace-cni.yml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: Namespace 4 | metadata: 5 | name: istio-cni 6 | -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/namespace.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/ossmconsole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/ossmconsole.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/podmonitor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/podmonitor.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/servicemonitor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/servicemonitor.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/telemetry.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/telemetry.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/controlplane/user-workload-access-networkpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/controlplane/user-workload-access-networkpolicy.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/generator.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/health/istiocni-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/health/istiocni-status.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/deployment.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/deployment.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/horizontalpodautoscaler.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/horizontalpodautoscaler.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/namespace.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/networkpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/networkpolicy.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/poddisruptionbudget.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/poddisruptionbudget.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/role.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/role.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/rolebinding.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/service.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/service.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/ingress/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/ingress/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/servicemesh/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/namespace.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/namespace.yml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: Namespace 4 | metadata: 5 | name: tracing-system 6 | -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/objectbucketclaim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/objectbucketclaim.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/opentelemetry-rolebinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/opentelemetry-rolebinding.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/opentelemetrycollector.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/opentelemetrycollector.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-s3-access-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-s3-access-secret.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-s3-bundle-configmap.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-s3-bundle-configmap.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-s3-tls-secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-s3-tls-secret.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-tenant-readerbinding.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-tenant-readerbinding.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-tenant-readerrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-tenant-readerrole.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempo-tenant-writerrole.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempo-tenant-writerrole.yml -------------------------------------------------------------------------------- /policies/operators/servicemesh/tracing/tempostack.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/servicemesh/tracing/tempostack.yml -------------------------------------------------------------------------------- /policies/operators/talm/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/talm/README.md -------------------------------------------------------------------------------- /policies/operators/talm/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/talm/generator.yml -------------------------------------------------------------------------------- /policies/operators/talm/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/talm/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/talm/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/talm/namespace.yml -------------------------------------------------------------------------------- /policies/operators/talm/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/talm/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/tekton/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/README.md -------------------------------------------------------------------------------- /policies/operators/tekton/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/generator.yml -------------------------------------------------------------------------------- /policies/operators/tekton/health/tekton-status.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/health/tekton-status.yml -------------------------------------------------------------------------------- /policies/operators/tekton/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/tekton/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/namespace.yml -------------------------------------------------------------------------------- /policies/operators/tekton/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/tekton/pull-secret-auth/secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/pull-secret-auth/secret.yml -------------------------------------------------------------------------------- /policies/operators/tekton/pull-secret-auth/serviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/pull-secret-auth/serviceaccount.yml -------------------------------------------------------------------------------- /policies/operators/tekton/tektonchains.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/tektonchains.yml -------------------------------------------------------------------------------- /policies/operators/tekton/tektonconfig.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tekton/tektonconfig.yml -------------------------------------------------------------------------------- /policies/operators/tempo/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tempo/README.md -------------------------------------------------------------------------------- /policies/operators/tempo/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tempo/generator.yml -------------------------------------------------------------------------------- /policies/operators/tempo/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tempo/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/tempo/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tempo/namespace.yml -------------------------------------------------------------------------------- /policies/operators/tempo/operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/tempo/operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/README.md -------------------------------------------------------------------------------- /policies/operators/workload-availability/far-nhc-remediation/far-template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/far-nhc-remediation/far-template.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/far-nhc-remediation/mdr-template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/far-nhc-remediation/mdr-template.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/far-nhc-remediation/nodehealthcheck.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/far-nhc-remediation/nodehealthcheck.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/fence-agent-operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/fence-agent-operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/generator.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/kustomization.yaml -------------------------------------------------------------------------------- /policies/operators/workload-availability/machine-deletion-operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/machine-deletion-operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/namespace.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/node-healthcheck-operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/node-healthcheck-operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/node-remediation-console.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/node-remediation-console.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/self-node-operatorpolicy.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/self-node-operatorpolicy.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/snr-nhc-remediation/mdr-template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/snr-nhc-remediation/mdr-template.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/snr-nhc-remediation/nodehealthcheck.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/snr-nhc-remediation/nodehealthcheck.yml -------------------------------------------------------------------------------- /policies/operators/workload-availability/snr-nhc-remediation/snr-outofservicetaint-template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/operators/workload-availability/snr-nhc-remediation/snr-outofservicetaint-template.yml -------------------------------------------------------------------------------- /policies/security/cve-mitigation/cve-2024-7387_cve-2024-45496/remove-global-access.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/security/cve-mitigation/cve-2024-7387_cve-2024-45496/remove-global-access.yml -------------------------------------------------------------------------------- /policies/security/cve-mitigation/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/security/cve-mitigation/generator.yml -------------------------------------------------------------------------------- /policies/security/cve-mitigation/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/security/cve-mitigation/kustomization.yaml -------------------------------------------------------------------------------- /policies/security/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/policies/security/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/README.md -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/README.md -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/base/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/base/argocd.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/base/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/base/consolelink.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/base/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/base/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/base/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/base/namespace.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/argocd.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/cluster-secrets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/cluster-secrets.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/consolelink.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/managedserviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/managedserviceaccount.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/propagate-cluster-secrets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/propagate-cluster-secrets.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-fozzie/rolloutmanager.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-fozzie/rolloutmanager.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/argocd.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/argocd.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/cluster-secrets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/cluster-secrets.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/consolelink.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/consolelink.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/managedserviceaccount.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/managedserviceaccount.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/propagate-cluster-secrets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/propagate-cluster-secrets.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/argocd-instances/team-scooter/rolloutmanager.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/argocd-instances/team-scooter/rolloutmanager.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/generator.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/generator.yml -------------------------------------------------------------------------------- /template-examples/gitops-multicluster/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/gitops-multicluster/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/README.md -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/clusters/ocpad/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/clusters/ocpad/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/clusters/ocpad/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/clusters/ocpad/values.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/clusters/ocpap/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/clusters/ocpap/kustomization.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/clusters/ocpap/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/clusters/ocpap/values.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/.helmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/.helmignore -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/Chart.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/Chart.yaml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/_helpers.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/_helpers.tpl -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/cluster-monitoring-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/cluster-monitoring-config.yml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/user-workload-monitoring-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/templates/user-workload-monitoring-config.yml -------------------------------------------------------------------------------- /template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/kustomize-monitoring-config/components/cluster-monitoring-config/values.yaml -------------------------------------------------------------------------------- /template-examples/namespace-config-operator/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/namespace-config-operator/README.md -------------------------------------------------------------------------------- /template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/README.md -------------------------------------------------------------------------------- /template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/group-name-matches-groups.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/group-name-matches-groups.yml -------------------------------------------------------------------------------- /template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/group-name-matches-namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bry-tam/acm-policy-samples/HEAD/template-examples/namespace-config-operator/clusterrolebinding-wildcard-groups/group-name-matches-namespace.yml --------------------------------------------------------------------------------