@lively-refrigerator-33439 Another option: Give NeuVector a look for Admission Control…
Numerous rules that can alert/block based on registry scan results for CVE’s or compliance issues, allowed registries, etc (see screenshot)
Monitor (alert only - don’t block) and Protect (alert AND block) modes
Complex rules support (X number of policies per rule)
Allow and Deny policies…
Easy to use UI that doesn’t require coding..
Ability to apply rules to multiple clusters with federation or CRD yaml export.