OPA
Sysdig Secure leverages OPA to strengthen cloud and Kubernetes security with out-of-the-box policies as code.
Sysdig Secure Extends OPA
Sysdig Secure leverages OPA to enforce consistent policies across multiple infrastructure-as-code (IaC) sources (Terraform, Helm, Kustomize) and Kubernetes clusters, using a policy-as-code approach.
OPA is an open-source policy engine that unifies policy enforcement for cloud-native environments. Sysdig Secure uses OPA to manage compliance and governance with policy as code.
Contributors
Features
Manage risk when configuring cloud infrastructures and shift security further left with IaC security scanning.
Fix issues faster with risk-based prioritization, identifying production instances affected by IaC security issues and sorted by severity. Prioritize IaC fixes based on application context.
Continuously validate risk posture and governance across all of your workloads and multicloud environments by applying out-of-the-box policies.
Scan incoming pull requests for security violations based on pre-defined out-of-the-box policies. Get a comprehensive list of violations, their severity, and the failed resources per file.
Managed Service
A fully-managed Prometheus service with enterprise features for open source Prometheus monitoring, such as automatic service detection and assisted integration deployment.
Dashboards and Querying
Use a simple form-based approach to query your Prometheus time series, or use the powerful Prometheus Query Language (PromQL) to build dashboards and alerts.
Prometheus Alerting
Set alerts for Prometheus monitoring metrics and get automated notifications of application issues across your entire environment. Import your recording rules for faster configuration.
Configuration and Storage
A radically simplified Prometheus monitoring tool. Our agent can scrape metrics for you and our back end provides long-term time series retention with a unified view across your whole environment.
