Merge branch 'main' into inline-exceptions

.github/workflows/check-links.yaml

@@ -11,17 +11,17 @@ jobs:
   linkChecker:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+      - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Check unrendered links
         id: lychee_unrendered
-        uses: lycheeverse/lychee-action@2b973e86fc7b1f6b36a93795fe2c9c6ae1118621 # v1.10.0
+        uses: lycheeverse/lychee-action@2bb232618be239862e31382c5c0eaeba12e5e966 # v2.0.1
         env:
           GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
         with:
           fail: true
           debug: false
-          args: --no-progress --include-fragments --github-token ${{secrets.GITHUB_TOKEN}} -c lychee.toml -E content/
+          args: --no-progress --include-fragments --github-token ${{secrets.GITHUB_TOKEN}} --config config/lychee.toml -E content/
 
       # Deactivated. The --include-fragments flag is causing failures because rendered links
       # have a trailing '#' which is probably a result of the link style change plus the new
@@ -48,7 +48,7 @@ jobs:
 
       # - name: Check rendered links
       #   id: lychee_rendered
-      #   uses: lycheeverse/lychee-action@2b973e86fc7b1f6b36a93795fe2c9c6ae1118621 # v1.10.0
+      #   uses: lycheeverse/lychee-action@2bb232618be239862e31382c5c0eaeba12e5e966 # v2.0.1
       #   env:
       #     GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
       #   with:

CONTRIBUTING.md

@@ -72,7 +72,7 @@ Kyverno maintains a thriving community with two different opportunities to parti
 
 #### Community Meetings
 
-For the available Kyverno meetings, see [here](https://kyverno.io/community/#community-meetings).
+For the available Kyverno meetings, see [here](https://kyverno.io/community/#meetings).
 
 ## Developer Certificate of Origin (DCO) Sign off
 

OWNERS.md

@@ -0,0 +1,15 @@
+approvers:
+- JimBugwadia
+- realshuting
+- eddycharly
+- fjogeleit
+- MariamFahmy98
+- vishal-chdhry
+
+reviewers:
+- JimBugwadia
+- realshuting
+- eddycharly
+- MariamFahmy98
+- vishal-chdhry
+- fjogeleit

README.md

@@ -41,6 +41,15 @@ hugo server
 
 By default, Hugo runs the website at: http://localhost:1313 and will re-build the site on changes.
 
+**Note for Github Codespaces User:** You will be required to install the hugo extended version. To do so download the extended version from [hugo release](https://github.com/gohugoio/hugo/releases) based on your operation system (mostly it is Ubuntu for Codespaces). Use the below commands to install and then move the hugo directory to `usr/local/hugo/bin/hugo`
+```
+wget https://github.com/gohugoio/hugo/releases/download/v0.135.0/hugo_extended_0.135.0_linux-amd64.deb
+sudo dpkg -i hugo_extended_0.135.0_linux-amd64.deb
+rm hugo_extended_0.135.0_linux-amd64.deb
+sudo mv /usr/local/bin/hugo /usr/local/hugo/bin/hugo
+```
+Finally, Check the hugo version by running: `hugo version`
+
 ## Update Docsy theme
 
 The project uses [Hugo Modules](https://gohugo.io/hugo-modules/) to manage the theme:

assets/scss/_styles_project.scss

@@ -2,6 +2,14 @@ body {
   scroll-behavior: smooth;
   overscroll-behavior: none;
 }
+a {
+  text-decoration: none;
+}
+
+.alert {
+  max-width: 100% !important;  
+}
+
 .td-navbar {
   min-height: auto;
 }
@@ -509,6 +517,7 @@ code.noClass {
   overflow: initial;
   display: initial;
   margin: 0;
+  border: none;
 }
 
 .highlight table {
@@ -897,4 +906,4 @@ code.noClass {
 .markmap > svg {
   width: 100%;
   height: 300px;
-}
+}

config/_default/menus/menu.en.toml

@@ -3,7 +3,7 @@
 [[main]]
   name = "About"
   weight = -103
-  url = "#kyverno-is-a-policy-engine-designed-for-kubernetes"
+  url = "#about-kyverno"
 
 [[main]]
   name = "Documentation"
@@ -15,11 +15,6 @@
   weight = -101
   url = "/policies"
 
-[[main]]
-  name = "Resources"
-  weight = -99
-  url = "/resources"
-
 [[main]]
   name = "Playground"
   weight = -98

content/en/_index.md

@@ -4,17 +4,17 @@ linkTitle = "Kyverno"
 +++
 
 {{< blocks/cover title="Kyverno" image_anchor="top" height="full" color="dark" >}}
-# Kubernetes Native Policy Management { class="text-center" }
+# Policy as Code, Simplified! { class="text-center" }
 
 <div class="mt-5 mx-auto">
-	<a class="btn btn-lg btn-primary mr-3 mb-4" href="#kyverno-is-a-policy-engine-designed-for-kubernetes">
+	<a class="btn btn-lg btn-primary mr-3 mb-4" href="#about-kyverno">
 		Learn More <i class="fa fa-chalkboard-teacher ml-2"></i>
 	</a>
 	<a class="btn btn-lg btn-secondary mr-3 mb-4" href="docs/introduction/#quick-start-guides">
 		Get Started <i class="fa fa-arrow-alt-circle-right ml-2 "></i>
 	  </a>
 
-  <a class="btn btn-link text-info" href="#kyverno-is-a-policy-engine-designed-for-kubernetes" aria-label="Read more"><i class="fa fa-chevron-circle-down" style="font-size: 400%"></i></a>
+  <a class="btn btn-link text-info" href="#about-kyverno" aria-label="Read more"><i class="fa fa-chevron-circle-down" style="font-size: 400%"></i></a>
 
 </div>
 {{< /blocks/cover >}}
@@ -23,18 +23,29 @@ linkTitle = "Kyverno"
 {{% blocks/lead color="light" %}}
 <br/>
 
-# Kyverno is a policy engine **designed for Kubernetes** { class="text-center" }
-
+# About Kyverno { class="text-center" }
+<br/>
 <br/>
+
+<h2>
+The Kyverno project provides a comprehensive set of tools to manage the complete Policy-as-Code (PaC) lifecycle for Kubernetes and other cloud native environments
+</h2>
 <br/>
 
-Policies are managed as Kubernetes resources and **no new language is required** to write policies.
+<p style="line-height:1.5">
+
+Kyverno policies are declarative YAML resources and <b>no new language</b> is required. Kyverno enables use of familiar tools such as <code style="font-size: 1.35rem">kubectl</code>, <code style="font-size: 1.35rem">git</code>, and <code style="font-size: 1.35rem">kustomize</code> to manage policies. Kyverno supports JMESPath and the Common Expressions Language (CEL) for efficient handling of complex logic.
 
-This allows using familiar tools such as <code style="font-size: 1.35rem">kubectl</code>, <code style="font-size: 1.35rem">git</code>, and <code style="font-size: 1.35rem">kustomize</code> to manage policies.
+In Kubernetes environments, Kyverno policies can <b>validate, mutate, generate, and cleanup</b> any Kubernetes resource, including custom resources. To help secure the software supply chain Kyverno policies can <b>verify OCI container image signatures and artifacts</b>. Kyverno policy reports and policy exceptions are also Kubernetes API resources.
 
-Kyverno policies can **validate, mutate, generate, and cleanup** Kubernetes resources, and **verify image** signatures and artifacts to help secure the software supply chain.
+The **Kyverno CLI** can be used to apply and test policies off-cluster e.g., as part of an IaC and CI/CD pipelines. 
 
-The Kyverno CLI can be used to test policies and validate resources as part of a **CI/CD pipeline**.
+**Kyverno Policy Reporter** provides report management with a graphical web-based user interface. 
+
+**Kyverno JSON** allows applying Kyverno policies in non-Kubernetes environments and on any JSON payload.
+
+**Kyverno Chainsaw** provides declarative end-to-end testing for policies. 
+</p>
 
 <div class="mt-5 mx-auto">
 	<a class="btn btn-lg btn-primary mr-3 mb-4" href="docs/introduction/">

content/en/blog/general/assigning-node-metadata-to-pods/index.md

@@ -390,6 +390,9 @@ spec:
               # https://kubernetes.io/docs/reference/labels-annotations-taints/#topologykubernetesiozone
               topology.kubernetes.io/zone: "{{ ZoneLabel }}"
 ```
+### Credits
+
+Thanks to [Abir Sigron](https://github.com/abirsigron) for initiating the idea on Slack and conducting a POC.
 
 ## Closing