#

opa

The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.

Community & Support

What is OPA

Here are 16 public repositories matching this topic...

ollionorg / gcp-landing-zone

Leverage Ollion's GCP Landing Zone to deploy a secure, compliant foundation with ease. The repository contains an implementation of a secure and compliant landing zone pattern that will help expedite cloud migration for an enterprise in a heavily regulated industry.

security foundation gcp opa pci-dss compliance nist800-53 cloud-security regula security-foundation cloud-compliance google-cloud-landing-zone-platform google-cloud-landing-zone gcp-landing-zones gcp-landing-zone gcp-enterprice-foundations-blueprint cis-gcp-benchmark

Updated Jun 13, 2024
HCL

ollionorg / aws-landing-zone

Leverage Ollion's AWS Landing Zone to deploy a secure, compliant foundation with ease. The repository contains an implementation of a secure and compliant landing zone pattern that will help expedite cloud migration for an enterprise in a heavily regulated industry.

aws security foundation opa pci-dss compliance nist800-53 cloud-security cis-aws-benchmark aws-landing-zone security-foundation cloud-compliance aws-landing-zones aws-foundation-security-best-practices

Updated Mar 14, 2024
HCL

rahulkiit / opaterraform

Open Policy Agent with Terraform version 0.12.5

json terraform opa infrastructure-as-code terraform-aws openpolicyagent policy-as-code terraform-show

Updated Aug 13, 2019
HCL

floriandorau / opa-aks

Use Open Policy Agent in combination with Azure Kubernetes cluster

terraform opa aks azure-kubernetes-service open-policy-agent

Updated Sep 3, 2021
HCL

onlydole / layered-governance

FOSDEM 2021 Talk

kubernetes flux terraform opa hashicorp-terraform gitops open-policy-agent

Updated Feb 5, 2021
HCL

lechnerc77 / terraform-at-sitmuc2024

Repository with Terraform Sample Setup for SAP Inside Track Munich 2024

terraform opa sap-btp terramate

Updated Nov 24, 2025
HCL

mcolomerc / terraform-confluent-opa-sample

Example of Terraform Confluent and Open Policy Agent integration.

terraform opa confluent-cloud policy-as-code

Updated Jun 8, 2025
HCL

cruxstack / terraform-aws-cognito-hooks

Terraform module to deploy AWS Lambda handlers for Amazon Cognito triggers.

aws aws-lambda terraform cognito opa sendgrid email-verification amazon-cognito amazon-lambda cognito-user-pool terraform-module open-policy-agent rego cloudposse

Updated Aug 16, 2025
HCL

DharunKumar04 / OPA_Terraform_Validation

GitHub Action workflow to validate Terraform plans against Open Policy Agent (OPA) policies

aws terraform opa github-actions rego

Updated Jun 16, 2024
HCL

zainasr / EKS-Security-FinOps-Platform

Production-grade AWS EKS Security + FinOps platform using Karpenter, Cilium, OPA/Gatekeeper, Falco, and Kubecost with Terraform automation

terraform opa falco eks cilium kubernetes-security kubecost obseravilbilty

Updated Mar 30, 2026
HCL

AurelienKumarathas / terraform-security-project

Terraform IaC security audit on AWS - manual code review and automated scanning with Checkov and OPA, mapped to CIS AWS Benchmark findings.

aws terraform opa infosec devsecops cloud-security cis-benchmark checkov iac-security

Updated Mar 20, 2026
HCL

jawsbaek / scp-gitops-sample

SCP(Samsung Cloud Platform) GitOps Infrastructure — sanitized reference architecture with Terraform/OpenTofu, Argo CD, OPA/Kyverno policies, and multi-env GitOps patterns

kubernetes terraform iac opa gitops argocd kyverno opentofu samsung-cloud-platform

Updated Apr 2, 2026
HCL

janpreet / proxmox_terraform

Automated setup of a Kubernetes cluster on Proxmox VE using Terraform. Fully parameterized with remote state storage in AWS S3. Just provide your terraform.tfvars file, and Terraform will handle the rest.

kubernetes terraform opa proxmox

Updated Jul 24, 2024
HCL

effieksa / zero-trust-network

Zero trust network platform for Kubernetes implementing NIST SP 800-207 across three independent enforcement layers: SPIFFE/SPIRE workload identity (1hour rotating X.509 SVIDs), Istio STRICT mTLS with DENY ALL AuthorizationPolicies, and Cilium eBPF network policy with L7 enforcement. No implicit trust every connection authenticated, authorized,

kubernetes terraform opa ebpf service-mesh network-security devsecops nist800-53 istio zero-trust mtls spiffe spire eks cilium

Updated Mar 7, 2026
HCL

twixxxman357 / terraform-devsecops-ci-cd

Terraform DevSecOps CI/CD pipeline with PR gating, policy-as-code, security scanning, and drift detection.

github terraform ci-cd opa snyk devsecops github-actions

Updated Mar 11, 2026
HCL

btp-automation-scenarios / btp-terraform-opa

Sample for using Open Policy Agent with Terraform and SAP BTP

sap terraform opa btp gh-actions

Updated Nov 24, 2025
HCL

Followers: 20 followers
Repository: open-policy-agent/opa
Website: github.com/topics/open-policy-agent

Related topics

authorization open-source-policy policy policy-as-code