├── AWS ├── README.md ├── enforce_aws_resource.rego ├── enforce_cidr.rego ├── enforce_iam_instance_profiles.rego ├── enforce_instance_subnet.rego ├── enforce_kms_key_names.rego ├── enforce_lb_subnets.rego ├── enforce_rds_subnets.rego ├── enforce_s3_buckets_encryption.rego ├── enforce_s3_private.rego └── enforce_sec_group.rego ├── Admin Policies ├── README.md ├── denied_provisioners.rego ├── enforce_var_desc.rego ├── resource_tags.rego ├── workspace_name.rego └── workspace_tags.rego ├── Azure ├── README.md ├── enforce_az_blob_private.rego └── enforce_inbound_cidr.rego ├── GCP ├── README.md ├── enforce_fw_source.rego └── enforce_gcs_private.rego ├── Generic ├── README.md ├── actions-blacklist.rego ├── array-blacklist.rego ├── array-whitelist.rego ├── attribute_check.rego ├── attribute_value_regex.rego ├── instance_types.rego ├── numeric-range.rego ├── resource-type-blacklist.rego ├── resource-type-whitelist.rego ├── scalar-blacklist.rego ├── scalar-whitelist.rego ├── tags-required.rego └── vcs-user-whitelist.rego └── README.md /AWS/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/README.md -------------------------------------------------------------------------------- /AWS/enforce_aws_resource.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_aws_resource.rego -------------------------------------------------------------------------------- /AWS/enforce_cidr.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_cidr.rego -------------------------------------------------------------------------------- /AWS/enforce_iam_instance_profiles.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_iam_instance_profiles.rego -------------------------------------------------------------------------------- /AWS/enforce_instance_subnet.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_instance_subnet.rego -------------------------------------------------------------------------------- /AWS/enforce_kms_key_names.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_kms_key_names.rego -------------------------------------------------------------------------------- /AWS/enforce_lb_subnets.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_lb_subnets.rego -------------------------------------------------------------------------------- /AWS/enforce_rds_subnets.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_rds_subnets.rego -------------------------------------------------------------------------------- /AWS/enforce_s3_buckets_encryption.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_s3_buckets_encryption.rego -------------------------------------------------------------------------------- /AWS/enforce_s3_private.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_s3_private.rego -------------------------------------------------------------------------------- /AWS/enforce_sec_group.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/AWS/enforce_sec_group.rego -------------------------------------------------------------------------------- /Admin Policies/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/README.md -------------------------------------------------------------------------------- /Admin Policies/denied_provisioners.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/denied_provisioners.rego -------------------------------------------------------------------------------- /Admin Policies/enforce_var_desc.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/enforce_var_desc.rego -------------------------------------------------------------------------------- /Admin Policies/resource_tags.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/resource_tags.rego -------------------------------------------------------------------------------- /Admin Policies/workspace_name.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/workspace_name.rego -------------------------------------------------------------------------------- /Admin Policies/workspace_tags.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Admin Policies/workspace_tags.rego -------------------------------------------------------------------------------- /Azure/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Azure/README.md -------------------------------------------------------------------------------- /Azure/enforce_az_blob_private.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Azure/enforce_az_blob_private.rego -------------------------------------------------------------------------------- /Azure/enforce_inbound_cidr.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Azure/enforce_inbound_cidr.rego -------------------------------------------------------------------------------- /GCP/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/GCP/README.md -------------------------------------------------------------------------------- /GCP/enforce_fw_source.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/GCP/enforce_fw_source.rego -------------------------------------------------------------------------------- /GCP/enforce_gcs_private.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/GCP/enforce_gcs_private.rego -------------------------------------------------------------------------------- /Generic/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/README.md -------------------------------------------------------------------------------- /Generic/actions-blacklist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/actions-blacklist.rego -------------------------------------------------------------------------------- /Generic/array-blacklist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/array-blacklist.rego -------------------------------------------------------------------------------- /Generic/array-whitelist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/array-whitelist.rego -------------------------------------------------------------------------------- /Generic/attribute_check.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/attribute_check.rego -------------------------------------------------------------------------------- /Generic/attribute_value_regex.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/attribute_value_regex.rego -------------------------------------------------------------------------------- /Generic/instance_types.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/instance_types.rego -------------------------------------------------------------------------------- /Generic/numeric-range.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/numeric-range.rego -------------------------------------------------------------------------------- /Generic/resource-type-blacklist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/resource-type-blacklist.rego -------------------------------------------------------------------------------- /Generic/resource-type-whitelist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/resource-type-whitelist.rego -------------------------------------------------------------------------------- /Generic/scalar-blacklist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/scalar-blacklist.rego -------------------------------------------------------------------------------- /Generic/scalar-whitelist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/scalar-whitelist.rego -------------------------------------------------------------------------------- /Generic/tags-required.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/tags-required.rego -------------------------------------------------------------------------------- /Generic/vcs-user-whitelist.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/Generic/vcs-user-whitelist.rego -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scalr-eap/policy-templates/HEAD/README.md --------------------------------------------------------------------------------