Polaris Logo

Polaris is an open source policy engine for Kubernetes

Polaris is an open source policy engine for Kubernetes that validates and remediates resource configuration. It includes 30+ built in configuration policies, as well as the ability to build custom policies with JSON Schema. When run on the command line or as a mutating webhook, Polaris can automatically remediate issues based on policy criteria. Polaris can be run in three different modes: * As a [dashboard](https://polaris.docs.fairwinds.com/dashboard) - Validate Kubernetes resources against policy-as-code. * As an [admission controller](https://polaris.docs.fairwinds.com/admission-controller) - Automatically reject or modify workloads that don't adhere to your organization's policies. * As a [command-line tool](https://polaris.docs.fairwinds.com/infrastructure-as-code) - Incorporate policy-as-code into the CI/CD process to test local YAML files.

Polaris Architecture

## Documentation Check out the [documentation at docs.fairwinds.com](https://polaris.docs.fairwinds.com) ## Notice: Registry Migration and Immutable Images (v10.1.8 → v10.2.0) Starting with **v10.2.0**: - Images moved to `us-docker.pkg.dev/fairwinds-ops/oss/polaris` - `quay.io/fairwinds/polaris` is deprecated ### Required action ```diff - quay.io/fairwinds/polaris: + us-docker.pkg.dev/fairwinds-ops/oss/polaris: ``` --- ## Immutable and signed images * Images are now **signed** * Tags are **immutable** * No more floating tags: * `v10` * `v10.1` * `latest` Use full version tags: ``` us-docker.pkg.dev/fairwinds-ops/oss/polaris:v.. ``` Or pin by digest: ``` us-docker.pkg.dev/fairwinds-ops/oss/polaris@sha256: ``` ## Join the Fairwinds Open Source Community The goal of the Fairwinds Community is to exchange ideas, influence the open source roadmap, and network with fellow Kubernetes users. [Chat with us on Slack](https://join.slack.com/t/fairwindscommunity/shared_invite/zt-2na8gtwb4-DGQ4qgmQbczQyB2NlFlYQQ) ## Other Projects from Fairwinds Enjoying Polaris? Check out some of our other projects: * [Goldilocks](https://github.com/FairwindsOps/Goldilocks) - Right-size your Kubernetes Deployments by compare your memory and CPU settings against actual usage * [Pluto](https://github.com/FairwindsOps/Pluto) - Detect Kubernetes resources that have been deprecated or removed in future versions * [Nova](https://github.com/FairwindsOps/Nova) - Check to see if any of your Helm charts have updates available * [rbac-manager](https://github.com/FairwindsOps/rbac-manager) - Simplify the management of RBAC in your Kubernetes clusters Or [check out the full list](https://www.fairwinds.com/open-source-software?utm_source=polaris&utm_medium=polaris&utm_campaign=polaris) ## Fairwinds Insights If you're interested in running Polaris in multiple clusters, tracking the results over time, integrating with Slack, Datadog, and Jira, or unlocking other functionality, check out [Fairwinds Insights](https://fairwinds.com/insights), a platform for auditing and enforcing policy in Kubernetes clusters.