Lachie Evenson and Sertaç Özercan discuss how Gatekeeper, an Open Policy Agent subproject which is an admission controller for Kubernetes, helps ensure end-to-end security by default.Relevant Links:CNCF: https://cncf.ioGatekeeper: https://open-policy-agent.github.io/gatekeeper/website/SBOMs: https://www.cisa.gov/sbomSLSA Framework: https://slsa.dev/Github Artifact Attestations: https://docs.github.com/en/actions/concepts/security/artifact-attestationsRatify: https://ratify.dev/Azure Policy: https://learn.microsoft.com/en-us/azure/governance/policy/overviewImage Integrity: https://learn.microsoft.com/en-us/azure/aks/image-integrity?tabs=azure-cliCOPA: https://project-copacetic.github.io/copacetic/website/CNCF Tag Security: https://tag-security.cncf.io/Enforce admission policies with artifact attestations in Kubernetes using OPA Gatekeeper: https://github.blog/changelog/2025-06-23-enforce-admission-policies-with-artifact-attestations-in-kubernetes-using-opa-gatekeeper/#kubernetes #security #supplychain #gatekeeper #microsoftazure #copacetic #ratify