wingetCollections
  • Auto
  • Search
  • Awesome Collections
  • Awesome Programs
  • My Favorite Collections
  • My Collections
  • Account / Settings
  • Terms of Service
  • Privacy
  • About

Β© 2025 winget.ragerworks.com

Loading...
Install kyverno using Winget - wingetCollections
  1. Go back
  2. Packages
  3. kyverno
kyverno logo

kyverno kyverno

k8s kubernetes
Use this command to install kyverno:
winget install --id=kyverno.kyverno -e

Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. Kyverno policies are Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.

Kyverno is a Kubernetes-native policy engine designed to enforce security, compliance, and operational excellence within Kubernetes clusters. It enables platform teams to define and execute policies using Kubernetes resources, eliminating the need for new languages or tools.

Key Features:

  • Validation, Mutation, and Generation: Enforce policies at admission time or via background scans to validate configurations, mutate resources (e.g., adding labels), and generate missing components (e.g., NetworkPolicies).
  • Image Validation: Verify container image signatures for supply chain security.
  • Policy-as-Code: Define policies using familiar Kubernetes constructs, enabling seamless integration with existing workflows like kubectl, kustomize, and Git.

Audience & Benefit: Ideal for platform engineering teams managing Kubernetes clusters. Kyverno helps enforce best practices, reduce operational risks, and ensure compliance without requiring new tooling or processes. It supports use cases such as security hardening, cost optimization, and developer guardrails, all while maintaining compatibility with existing workflows.

Kyverno can be installed via winget on Windows.

README

Kyverno Tweet

Cloud Native Policy Management πŸŽ‰

Build Status Go Report Card License: Apache-2.0 GitHub Repo stars CII Best Practices OpenSSF Scorecard SLSA 3 Artifact HUB codecov FOSSA Status

πŸ“‘ Table of Contents

  • About Kyverno
  • Documentation
  • Demos & Tutorials
  • Popular Use Cases
  • Explore the Policy Library
  • Getting Help
Versions
1.13.4
1.12.4
1.11.3
1.11.1
1.10.6
Website
github.com
License
Last Updated
5/15/2025
  • Contributing
  • Software Bill of Materials
  • Community Highlights
  • Contributors
  • License

    • About Kyverno

    Kyverno is a Kubernetes-native policy engine designed for platform engineering teams. It enables security, compliance, automation, and governance through policy-as-code. Kyverno can:

    • Validate, mutate, generate, and clean up resources using Kubernetes admission controls and background scans.
    • Verify container image signatures for supply chain security.
    • Operate with tools you already use β€” like kubectl, kustomize, and Git.

    πŸ“™ Documentation

    Kyverno installation and reference documentation is available at kyverno.io.

    • πŸ‘‰ Quick Start
    • πŸ‘‰ Installation Guide
    • πŸ‘‰ Policy Library

    πŸŽ₯ Demos & Tutorials

    • ▢️ Getting Started with Kyverno – YouTube
    • πŸ§ͺ Kyverno Playground

    🎯 Popular Use Cases

    Kyverno helps platform teams enforce best practices and security standards. Some common use cases include:

    1. Security & Compliance

    • Enforce Pod Security Standards (PSS)
    • Require specific security contexts
    • Validate container image sources and signatures
    • Enforce CIS Benchmark policies

    2. Operational Excellence

    • Auto-label workloads
    • Enforce naming conventions
    • Generate default configurations (e.g., NetworkPolicies)
    • Validate YAML and Helm manifests

    3. Cost Optimization

    • Enforce resource quotas and limits
    • Require cost allocation labels
    • Validate instance types
    • Clean up unused resources

    4. Developer Guardrails

    • Require readiness/liveness probes
    • Enforce ingress/egress policies
    • Validate container image versions
    • Auto-inject config maps or secrets

    πŸ“š Explore the Policy Library

    Discover hundreds of production-ready Kyverno policies for security, operations, cost control, and developer enablement.

    πŸ‘‰ Browse the Policy Library

    πŸ™‹ Getting Help

    We’re here to help:

    • 🐞 File a GitHub Issue
    • πŸ’¬ Join the Kyverno Slack Channel
    • πŸ“… Attend Community Meetings
    • ⭐️ Star this repository to stay updated

    βž• Contributing

    Thank you for your interest in contributing to Kyverno!

    • βœ… Read the Contribution Guidelines
    • 🧡 Join GitHub Discussions
    • πŸ“– Read the Development Guide
    • 🏁 Check Good First Issues and request with /assign
    • 🌱 Explore the Community page

    🧾 Software Bill of Materials

    All Kyverno images include a Software Bill of Materials (SBOM) in CycloneDX format. SBOMs are available at:

    • πŸ‘‰ ghcr.io/kyverno/sbom
    • πŸ‘‰ Fetching the SBOM

    πŸ‘₯ Contributors

    Kyverno is built and maintained by our growing community of contributors!

    Made with contributors-img

    πŸ“„ License

    Copyright 2025, the Kyverno project. All rights reserved.
    Kyverno is licensed under the Apache License 2.0.

    Kyverno is a Cloud Native Computing Foundation (CNCF) Incubating project and was contributed by Nirmata.