Tagged articles

OPA

2 articles · Page 1 of 1
Ops Development & AI Practice
Ops Development & AI Practice
Jun 24, 2026 · Information Security

Ending Hard‑Coded Rules: OPA Policy‑as‑Code for Unified SecOps Guardrails

The article explains how enterprises can replace fragmented, hard‑coded security checks in Terraform, CI/CD pipelines, Kubernetes admission webhooks, and API gateways with a unified, declarative policy engine—Open Policy Agent—using Rego to decouple decision and enforcement, enabling fast, auditable SecOps guardrails across the entire software lifecycle.

CI/CDOPAPolicy-as-Code
0 likes · 12 min read
Ending Hard‑Coded Rules: OPA Policy‑as‑Code for Unified SecOps Guardrails
Alibaba Cloud Native
Alibaba Cloud Native
Jan 10, 2020 · Cloud Native

How to Secure Multi‑Tenant Kubernetes Clusters: Practical Isolation Strategies

This article explains the concept of multi‑tenant Kubernetes clusters, distinguishes soft and hard isolation, describes common enterprise and SaaS/KaaS scenarios, and provides step‑by‑step guidance on using native Kubernetes features such as RBAC, NetworkPolicy, PSP, OPA, resource quotas, pod priority, node taints, and secret encryption to achieve robust security isolation.

Multi‑tenantNamespaceNetworkPolicy
0 likes · 14 min read
How to Secure Multi‑Tenant Kubernetes Clusters: Practical Isolation Strategies