Insights and best practices from the policy-as-code community
A policy-as-code focused look at the most important security and governance announcements from AWS reinforce 2025, including updates to IAM Access Analyzer, Amazon Inspector, and more.
A deep dive into the new KubeKnot remote code execution vulnerability (CVE-2025-12345) affecting Kubernetes clusters. Learn how it works, how to detect it, and how to apply immediate policy-based mitigations.
A real-world debugging diary covering undefined decisions, unsafe vars, regex traps, and other common mistakes when authoring Wiz Cloud Configuration Rules
Learn how to write robust OPA/Rego policies for Wiz cloud security platform, handle undefined values, and debug common policy errors.
The definitive guide to Policy as Code (PaC). Learn why it's critical for modern cloud governance, explore top tools like OPA and Sentinel, and see how to implement automated guardrails in your CI/CD pipelines.
Filter articles by technology, cloud, or tool.