Kubernetes tools that keep your clusters
running and compliant.
Open-source monitoring and compliance automation for Kubernetes. From CronJob observability to audit-ready SOC2 reports — all Kubernetes-native, all self-hosted.
$ helm install varax-monitor varaxlabs/varax-monitor
NAME: varax-monitor
STATUS: deployed
REVISION: 1
$ kubectl get pods -l app=varax-monitor
NAME READY STATUS
varax-monitor-7f8b9c 1/1 Running
✓ Monitoring 14 CronJobs across 3 namespaces
✓ Prometheus metrics exposed on :9090/metrics
CIS Benchmark
NSA/CISA
SOC2 Trust Services
Pod Security Standards
How It Works
From install to compliance report in three steps.
1
Install
helm install varax varaxlabs/operator
2
Scan
$ varax scan ✓ RBAC Configuration ✓ Network Policies ⚠ Pod Security Standards Score: 87/100
3
Report
$ varax report --format pdf ✓ Report generated varax-soc2-report.pdf (42 pages)
Built for Kubernetes teams
Everything you need for Kubernetes compliance, nothing you don't.
Auto-Discovery
Scans your entire cluster automatically. No configuration files to maintain.
SOC2 Control Mapping
Every check maps to specific SOC2 Trust Services Criteria.
Audit-Ready Reports
Generate the PDF your auditor needs with one CLI command.
Auto-Enable Audit Logging
Programmatically enables K8s audit logging on EKS, AKS, and GKE.
Auto-Remediation
Opt-in fixes for failing checks with dry-run mode.
Zero External Dependencies
Runs entirely in your cluster. Your data never leaves.
Ready to see your compliance score?
Install the free tier in 60 seconds. No credit card, no sign-up, no vendor lock-in.