Datree
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Awesome Cheatsheets | 33,309 | a month ago | 85 | mit | JavaScript | |||||
| 👩💻👨💻 Awesome cheatsheets for popular programming languages, frameworks and development tools. They include everything you should know in one single file. | ||||||||||
| Gocui | 8,932 | 141 | 133 | 2 months ago | 21 | August 14, 2021 | 75 | bsd-3-clause | Go | |
| Minimalist Go package aimed at creating Console User Interfaces. | ||||||||||
| Datree | 6,268 | 4 hours ago | 108 | September 21, 2022 | 23 | apache-2.0 | Go | |||
| Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io | ||||||||||
| Eksctl | 4,465 | 2 days ago | 387 | September 19, 2022 | 73 | other | Go | |||
| The official CLI for Amazon EKS | ||||||||||
| Threatmapper | 3,727 | 4 hours ago | 5 | August 10, 2022 | 168 | apache-2.0 | Go | |||
| Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more. | ||||||||||
| Arkade | 3,563 | 2 | a day ago | 31 | April 24, 2021 | 83 | mit | Go | ||
| Open Source Marketplace For Developer Tools | ||||||||||
| Devspace | 3,554 | 2 days ago | 173 | apache-2.0 | Go | |||||
| DevSpace - The Fastest Developer Tool for Kubernetes ⚡ Automate your deployment workflow with DevSpace and develop software directly inside Kubernetes. | ||||||||||
| Img | 3,486 | 5 | 2 years ago | 40 | October 01, 2021 | 104 | mit | Go | ||
| Standalone, daemon-less, unprivileged Dockerfile and OCI compatible container image builder. | ||||||||||
| Kubectl Aliases | 2,925 | 12 days ago | 3 | apache-2.0 | Shell | |||||
| Programmatically generated handy kubectl aliases. | ||||||||||
| Kui | 2,505 |  | 9 | 13 | 11 days ago | 1,182 | September 26, 2022 | 16 | apache-2.0 | TypeScript |
| A hybrid command-line/UI development experience for cloud-native development | ||||||||||
Datree
Datree (pronounced /da-tree/) secures your Kubernetes by blocking the deployment of misconfigured resources.
Quick-start in two steps
Install Datree to get insights on the status of your cluster and enforce your desired policies on new resources.
NOTE:
By default, Datree does not block misconfigured resources, it only monitors and alerts about them.
To enable enforcement mode, see the documentation.
1. Add the Datree Helm repository
Run the following command in your terminal:
helm repo add datree-webhook https://datreeio.github.io/admission-webhook-datree
helm repo update
2. Install Datree on your cluster
Replace <DATREE_TOKEN> with the token from your dashboard, and run the following command in your terminal:
helm install -n datree datree-webhook datree-webhook/datree-admission-webhook --debug \
--create-namespace \
--set datree.token=<DATREE_TOKEN> \
--set datree.clusterName=$(kubectl config current-context)
This will create a new namespace (datree), where Datrees services and application resources will reside. datree.token is used to connect your dashboard to your cluster. Note that the installation can take up to 5 minutes.
How it works
Datree scans Kubernetes resources against a centrally managed policy, and blocks those that violate your desired policies.
Datree comes with over 100 rules covering various use-cases, such as workload security, high availability, ArgoCD best practices, NSA hardening guide, and many more.
In addition to our built-in rules, you can write any custom rule you wish and then run it against your Kubernetes configurations to check for rule violations. Custom rules can be written in JSON schema or in Rego.
Management dashboard (web application)
Datree's dashboard provides valuable information about your clusters' health and stability. It details the resources that failed your policy checks, and shows you how to fix each violation.
Datree can be configured via code or via the dashboard. The dashboard offers the following capabilities in an intuitive visual interface:
- Control Datree's configuration:
- Default action on failure - set whether resources that failed the policy check should be blocked or only monitored
- Set which policy to use for your checks
- Define resources and/or namespaces to ignore
- Create & customize policies
- Edit rules' failure message
- Issue tokens
- View policy check history
- Configure Kubernetes schema version
Additional features
Datree offers a suite of features to make adoption seamless:
- Monitoring - Datree is first installed in monitoring mode that reports on policy violations, rather than block their deployments.
- CLI - Help your developers find misconfigurations in their configs before deploying them, by integrating Datree into their CI.
- Simple integrations - Datree works seamlessly with popular CD tools such as ArgoCD and FluxCD, and comes with ready-made integrations for various CI platforms.
- Cluster score - Rank the stability of your cluster based on the number of detected misconfigurations.
Contributing
Contributions are welcome!
Thank you to all the people who already contributed to Datree
