Advanced Policy-as-Code for Flux Managed Resources

Open Source Weave Policy Engine

Weave Policy Engine ensures robust isolation while simplifying security and compliance enforcement by automating checks throughout cloud native application and infrastructure lifecycles.
Learn More

Your Key to Kubernetes Security, Compliance, and Best Practices

Weave Policy Engine empowers users to implement highly granular policies for Flux applications and tenants. This ensures robust isolation and compliance throughout their Kubernetes deployments.

Weave Policy Engine is a powerful policy-as-code solution that ensures security, compliance, and best practices are monitored and enforced for Kubernetes applications and clusters throughout their lifecycle.

Designed for GitOps workflows, especially Flux, it enables fine-grained policies for Flux applications and tenants, ensuring isolation and compliance across Kubernetes deployments.

Based on Open Policy Agent (OPA), it plays a crucial role in enhancing the security, compliance, and best practices of Kubernetes applications by implementing and automatically enforcing granular security and compliance-driven policies on a continual basis, freeing application developers to spend more time building code with lower cognitive load.

Weave Policy Engine Policy-as-Code Diagram

Weave Policy Library

Composed of OPA-based (Open Policy Agent) policies that map to standards such as NIST, CIS, PCI DSS, MITRE ATT&CK, GDPR, HIPAA and more. We keep track of active policies, categorized by severity and standard.

Simple, Powerful, Community Driven

Streamline DevSecOps

Automate the creation, deployment, and management of governance policies in alignment with GitOps practices. Enable users to create and implement policies based on criteria such as environment, workload, geography, and more.

Automate Remediation

Detect un-configured security settings, instances of non-compliance, or misconfigured resources with the powerful auto-remediation feature.

Deploy Faster with Less Risk

Ensure governance and compliance throughout the deployment process. Deployments can automatically undergo pre-flight checks, reducing the burden on development teams and enabling greater deployment frequency and velocity.

Embrace Shift-Left Security

Create and validate policies before enforcement to prevent costly security breaches and misconfigurations. Policies are held in Git’s version control, where changes are made, reviewed, and fed through an automated, fully-auditable delivery pipeline.

Actionable Security Scans

Security and policy violations, across applications and clusters in any environment, cause an alert on the central management console. Comprehensive audit visibility and audit trails allow teams to visualize and uniformly assess compliance across all assets.

Assured Support Simplifies DevSecOps

Get expert help building and implementing a Shift-Left posture

See Assured