Use Policy Controller to limit pods to safe sysctls
Using Policy Controller to Verify Signed Chainguard Images
Writing Rego-based policies for Chainguard Enforce
Use chainctl to create a policy and apply it to a cluster to detect vulnerable versions of Log4J
Chainguard Enforce for Kubernetes policy recipes