OPA/Rego Gate - CI/CD Glossary Definition
An OPA/Rego gate is a CI check that uses Open Policy Agent to evaluate Rego policies against configuration or plan output and fails the build when a rule is violated.
An OPA/Rego gate is a CI check that uses Open Policy Agent to evaluate Rego policies against configuration or plan output and fails the build when a rule is violated.
An OPA/Rego gate is a CI check that uses Open Policy Agent to evaluate Rego policies against configuration or plan output and fails the build when a rule is violated.
How it runs
A pipeline pipes JSON (a Terraform plan, a Kubernetes manifest, an image manifest) into opa eval or conftest test, which returns nonzero when any deny rule matches.