Procedural
Disallowing Run as Root User
Using Policy Controller to prevent running pods as root
Maximum Container Image AgeMaximum container image age with Policy Controller
Disallowing Unsafe sysctlsUse Policy Controller to limit pods to safe sysctls
Verify Signed Chainguard ImagesUsing Policy Controller to Verify Signed Chainguard Images
Create an Assumable Identity for a GitLab CI/CD PipelineProcedural tutorial outlining how to create a Chainguard identity that can be assumed by a GitLab CI/CD pipeline.
How To Integrate Okta SSO with ChainguardProcedural tutorial on how to create an Okta App Integration
Rego PoliciesWriting Rego-based policies for Chainguard Enforce