Unlocking the Future of Kubernetes Policy as Code With Kyverno - Vishal Choudhary & Frank Jogeleit
Vishal Choudhary, Frank Jogeleit
KubeCon + CloudNativeCon Europe 2025 · Session
In the rapidly evolving landscape of cloud-native security and governance, Kubernetes policy as code has become an indispensable tool for maintaining compliance and operational integrity. This talk by Frank Jogeleit and Vishal Choudhary at KubeCon EU delves into the significant evolution of **Kyverno**, a CNCF incubating project designed to bring native policy enforcement to Kubernetes. The presentation outlines Kyverno's current capabilities and, more importantly, unveils an ambitious roadmap centered around simplifying its API, standardizing on **Common Expression Language (CEL)**, and extending its reach beyond Kubernetes resources to any JSON payload.
AI review
This talk from the Kyverno maintainers isn't just another policy-as-code overview; it's a deep dive into a significant architectural overhaul that genuinely advances the state of cloud-native governance. The move to standardized CEL, coupled with powerful Kyverno-specific extensions and the groundbreaking ability to apply policies to *any* JSON payload, positions Kyverno as a formidable and versatile engine for true supply chain security and beyond. This is real engineering, not marketing fluff.