Coming Soon
Kubernetes Security & Compliance

SOC2 compliance for Kubernetes.
One CLI command.

Auto-discovers misconfigurations. Maps to SOC2 controls. Generates the PDF your auditor wants. And your data never leaves your cluster.

terminal
<60s
Install time
0
External connections
42+
SOC2 controls mapped
1
Command to compliance

Two Products. One Mission.

Kubernetes compliance and observability.

From SOC2 scanning to CronJob monitoring, built for teams that run Kubernetes in production.

Free & Pro

Varax

SOC2 compliance automation for Kubernetes. Scan, report, remediate.

  • Auto-discovers misconfigurations across your cluster
  • Maps findings to SOC2 Trust Services Criteria
  • Generates audit-ready PDF reports
  • Auto-enables Kubernetes audit logging
  • Opt-in auto-remediation with dry-run mode
  • CIS Benchmark validation
Open Source

Onax

CronJob monitoring for Kubernetes. Know when jobs fail, hang, or miss their schedule.

  • Auto-discovers every CronJob in your cluster
  • Clean Prometheus metrics with zero configuration
  • Pre-built Grafana dashboards
  • Smart alert rules for failures and missed schedules
  • Under 50MB memory, under 0.05 CPU
  • Apache 2.0 licensed, no telemetry
Get Onax now on GitHub →
Coming Q3 2026

Varax Enterprise

Ask Varax questions in plain English. Get answers without your data ever leaving the cluster.

  • Conversational CLI - ask why a control is failing
  • On-cluster AI - no external API calls, ever
  • Remediation as code - exact kubectl commands and YAML
  • Time-travel compliance - 13+ months of history
  • Multi-cluster support - aggregate all clusters
  • Dedicated support - private Slack channel with SLA

Data Sovereignty

Your compliance data stays yours.

Most compliance tools want your cluster data on their servers. Varax doesn't.

No SaaS dashboard phoning home. No vendor with a copy of your cluster topology. Varax runs entirely inside your cluster — air-gapped compatible, SOC2-ready, enterprise-approved.

Network Activity Monitor
$ netstat -an | grep varax
(no external connections)
$ varax report --format pdf
Generating SOC2 compliance report...
Report saved: varax-soc2-2026-04.pdf
238 controls evaluated · 0 bytes sent externally