#None #Kubernetes #CNCF #Kyverno

Kyverno's Graduation from the Cloud Native Computing Foundation

On March 24, 2026, during KubeCon + CloudNativeCon North Europe, the Cloud Native Computing Foundation (CNCF) announced that Kyverno has officially graduated. This milestone reflects Kyverno's substantial production readiness and widespread enterprise adoption, demonstrating its crucial role in policy management for Kubernetes.

Originally designed by Nirmata, Kyverno functions as a Kubernetes-native policy engine. Its primary objective is to enable organizations to define, manage, and enforce policies across cloud-native environments. The term 'Kyverno' translates to 'to govern' in Greek, aptly representing the tool's purpose in the software ecosystem.

With the graduation, Kyverno has successfully gained community trust and demonstrated significant growth since it joined the CNCF in 2020. The project has seen its GitHub stars skyrocket from 574 to over 9,000, indicating a robust and expanding user base. Noteworthy organizations like Bloomberg, Coinbase, and LinkedIn have adopted Kyverno to secure and streamline their Kubernetes platforms.

The tool simplifies governance and security practices for platform and security teams by utilizing familiar Kubernetes constructs. Chris Aniszczyk, the CTO of CNCF, commented, "Kyverno's graduation highlights how crucial policy-as-code has become for organizations running cloud-native solutions at scale."

Kyverno's features allow organizations multiple integration pathways for policy management, enhancing its usability across different workflows such as running as a Kubernetes admission controller or a command-line interface. Over time, the project has integrated smoothly into existing cloud-native stacks, working in conjunction with projects like Argo CD and Flux to implement policy-driven governance effectively.

To achieve CNCF graduation status, Kyverno underwent rigorous evaluations, including a third-party security audit and a comprehensive security assessment. These assessments, overseen by CNCF's Technical Advisory Group Security Compliance, affirm the project's commitment to maintaining robust security and governance standards.

Karena Angell, chair of the Technical Oversight Committee, emphasized, "Graduation is for projects that showcase strong governance, community growth, and widespread use. Kyverno excelled in these areas, marking its readiness for production environments."

Kyverno's latest updates have fully adopted Common Expression Language (CEL), enhancing its performance and expressiveness. Future developments will focus on extending its policy enforcement capabilities across diverse control points, with plans to incorporate support for artificial intelligence and Model Context Protocol gateways, facilitating more versatile policy-as-code applications.

Jim Bugwadia, Kyverno's co-creator, remarked on the role of policy-as-code in facilitating governance at scale while encouraging innovation. He noted that Kyverno is designed to promote developer agility and enable self-service.

As organizations pivot towards adopting AI technologies, Kyverno is poised to provide the necessary governance frameworks, ensuring that these transitions do not compromise security or efficacy.

For businesses operating in Kubernetes environments, Kyverno's graduation is significant, affirming its reliability and the need for governance that adapts to modern infrastructure demands. Its consideration within organizations indicates a shift towards automated governance practices that align with the future of cloud-native operations.

In summary, Kyverno's journey from inception to graduation is not just a testament to its technical strengths but also a reflection of the collective efforts of its community, emphasizing the value of governance in the evolving landscape of cloud-native software development. Organizations interested in exploring Kyverno further can engage with its community through Kyverno's official website.