Name		Name	Last commit message	Last commit date
parent directory ..
.krmignore		.krmignore
1.1.1_asm-ingressgateway-label.yaml		1.1.1_asm-ingressgateway-label.yaml
1.1.2_asm-sidecar-injection.yaml		1.1.2_asm-sidecar-injection.yaml
1.2.1_asm-authz-policy-mesh-default-deny.yaml		1.2.1_asm-authz-policy-mesh-default-deny.yaml
1.2.2_asm-authz-policy-normalization.yaml		1.2.2_asm-authz-policy-normalization.yaml
1.2.3_asm-authz-policy-safe-pattern.yaml		1.2.3_asm-authz-policy-safe-pattern.yaml
1.3.1_asm-peer-authn-mesh-strict-mtls.yaml		1.3.1_asm-peer-authn-mesh-strict-mtls.yaml
1.3.2_asm-peer-authn-strict-mtls.yaml		1.3.2_asm-peer-authn-strict-mtls.yaml
1.4.1_asm-request-authn-prohibited-output-headers.yaml		1.4.1_asm-request-authn-prohibited-output-headers.yaml
Kptfile		Kptfile
LICENSE		LICENSE
README.md		README.md
kustomization.yaml		kustomization.yaml

README.md

Anthos Service Mesh Policy v0.0.1

The Anthos Service Mesh security policy bundle enforces policies in the following domains:

This bundle requires Policy Controller v1.11.2 or higher.

kubectl kustomize https://github.com/GoogleCloudPlatform/gke-policy-library.git/bundles/asm-policy-v0.0.1

kubectl apply -k https://github.com/GoogleCloudPlatform/gke-policy-library.git/bundles/asm-policy-v0.0.1

enforcementAction: The enforcement mode of the constraints, options are dryrun (default), deny or warn.
strictness-level: The strictness level of the security policy constraints, options are Low or High (default).