Automating Configuration and Permissions Testing for GitOps with OPA Conftest

This talk details how The New York Times implemented OPA Conftest to automate configuration and permissions testing within their GitOps workflow. The presentation covers the challenges of managing multi-tenant deployments securely, the benefits of shifting policy enforcement left with Conftest for early feedback, and how this approach enables developers to deploy with autonomy while maintaining system security. It also touches upon using tools like Cubeconform for manifest validation.