OPA (Open Policy Agent)

Open Policy Agent (OPA) is an open source, general-purpose policy engine. (by open-policy-agent)

OPA (Open Policy Agent) Alternatives

Similar projects and alternatives to OPA (Open Policy Agent)

  1. terraform

    Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.

  2. InfluxDB

    InfluxDB high-performance time series database. Collect, organize, and act on massive volumes of high-resolution data to power real-time intelligent systems.

    InfluxDB logo
  3. prometheus

    The Prometheus monitoring system and time series database.

  4. Grafana

    The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

  5. Keycloak

    Open Source Identity and Access Management For Modern Applications and Services

  6. helm

    The Kubernetes Package Manager

  7. Vault

    A tool for secrets management, encryption as a service, and privileged access management

  8. k9s

    🐶 Kubernetes CLI To Manage Your Clusters In Style!

  9. CodeRabbit

    CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

    CodeRabbit logo
  10. atlantis

    Terraform Pull Request Automation

  11. postgrest

    REST API for any Postgres database

  12. flux2

    Open and extensible continuous delivery solution for Kubernetes. Powered by GitOps Toolkit.

  13. istio

    Connect, secure, control, and observe services.

  14. checkov

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

  15. terragrunt

    Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.

  16. cerbos

    Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.

  17. conduit

    Ultralight, security-first service mesh for Kubernetes. Main repo for Linkerd 2.x.

  18. OPAL

    Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) (by permitio)

  19. gatekeeper

    🐊 Gatekeeper - Policy Controller for Kubernetes

  20. terrascan

    Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

  21. oso

    Deprecated: See README

  22. terratag

    Terratag is a CLI tool that enables users of Terraform to automatically create and maintain tags across their entire set of AWS, Azure, and GCP resources

  23. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better OPA (Open Policy Agent) alternative or higher similarity.

OPA (Open Policy Agent) discussion

Log in or Post with

OPA (Open Policy Agent) reviews and mentions

Posts with mentions or reviews of OPA (Open Policy Agent). We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-12-18.
  • AWS Lambda RIC - Runtime interface Client
    1 project | dev.to | 6 Feb 2025
    Perfect for bundling extensive resources like opa policies
  • Authorization (authz) and GraphQL
    6 projects | dev.to | 18 Dec 2024
    External Authorization System Using Policy engines like SpiceDB, OpenFGA, ORY Keto, OpenPolicy Agent (OPA), let you put your ReBAC rules in an external system and reference them from your queries. The main benefit you get from the centralized relationships model is it makes it possible to manage authorization centrally. This means that development teams can create new applications and add new relationships without needing to update any application code.
  • Kubernetes Multi-Cloud Multi-Cluster Strategy Overview
    6 projects | dev.to | 11 Oct 2024
    Going multicloud and multi-cluster can make it harder to maintain continual oversight of your security posture. Different clouds and cluster distributions may have their own security defaults and policy engines, so you need a mechanism that permits you to centrally roll out new configurations and compliance controls. Standardizing on a well-supported policy model such as Open Policy Agent (OPA) will make it easier to apply consistent settings to all your environments.
  • 5 Use Cases for Using Open Policy Agent
    2 projects | dev.to | 18 Aug 2024
    Open Policy Agent is an open-source policy engine recently graduated by the Cloud Native Computing Foundation (CNCF). Developed by the community and maintained by Styra, the OPA project aims to offer a unified framework to define, manage, and enforce policies through policies-as-code (PaC) across the technology stack layers of cloud-native applications.
  • Opa Gatekeeper: How To Write Policies For Kubernetes Clusters
    2 projects | dev.to | 4 Jul 2024
    Open Policy Agent (OPA) helps us write policy as code using Rego, a declarative language designed specifically for this reason.
  • Fastly and the Linux kernel
    26 projects | dev.to | 24 Jun 2024
    The open source projects Fastly uses and the foundations we partner with are vital to Fastly’s mission and success. Here's an unscientific list of projects and organizations supported by the Linux Foundation that we use and love include: The Linux Kernel, Kubernetes, containerd, eBPF, Falco, OpenAPI Initiative, ESLint, Express, Fastify, Lodash, Mocha, Node.js, Prometheus, Jenkins, OpenTelemetry, Envoy, etcd, Helm, osquery, Harbor, sigstore, cert-manager, Cilium, Fluentd, Keycloak, Open Policy Agent, Coalition for Content Provenance and Authority (C2PA), Flux, gRPC, Strimzi, Thanos, Linkerd, Let’s Encrypt, WebAssembly. And the list goes on!
  • My Journey in Authorization with OPAL
    2 projects | dev.to | 23 Jun 2024
    OPA - https://www.openpolicyagent.org/
  • Clusters Are Cattle Until You Deploy Ingress
    16 projects | dev.to | 30 May 2024
    Bart: Our numerous podcast discussions with seasoned professionals show that GitOps has been a recurring theme in about 90% of our conversations. Almost every guest we've interviewed has emphasized its importance, often mentioning it as their primary tool alongside other essentials like cert manager, Kyverno, or OPA, depending on their preferences.
  • The API database architecture – Stop writing HTTP-GET endpoints
    11 projects | news.ycombinator.com | 10 May 2024
    Yeah, I fully agree. The tooling for putting that much logic into the database is just not great. I've been decently happy with Sqitch[0] for DB change management, but even with that you don't really get a good basis for testing some of the logic you could otherwise test in isolation in app code.

    I've also tried to rely heavily on the database handling security and authorization, but as soon as you start to do somewhat non-trivial attribute-/relationship-based authorization (as you would find in many products nowadays), it really isn't fun anymore, and you spend a lot of the time you saved on manually building backend routes on trying to fit you authz model into those basic primitives (and avoiding performance bottlenecks). Especially compares to other modern authz solutions like OPA[1] or oso[2] it really doesn't stack up.

    [0]: https://github.com/sqitchers/sqitch

    [1]: https://www.openpolicyagent.org

    [2]: https://www.osohq.com

  • SAP BTP, Terraform and Open Policy Agent
    3 projects | dev.to | 2 Apr 2024
    How can we handle this? Are there any mechanisms to prevent or at least to some extent safeguard this kind of issues without falling back to a manual workflow? There is. One huge advantage of sticking to (de-facto) standards like Terraform is that first we are probably not the first ones to come up with this question and second there is a huge ecosystem around Terraform that might help us with such challenges. And for this specific scenario the solution is the Open Policy Agent. Let us take a closer look how the solution could look like.
  • A note from our sponsor - CodeRabbit
    coderabbit.ai | 21 Apr 2025
    Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR. Learn more →

Stats

Basic OPA (Open Policy Agent) repo stats
99
10,144
9.7
4 days ago

Sponsored
InfluxDB high-performance time series database
Collect, organize, and act on massive volumes of high-resolution data to power real-time intelligent systems.
influxdata.com