Home
World Journal of Advanced Research and Reviews
International Journal with High Impact Factor for fast publication of Research and Review articles

Main navigation

  • Home
    • Journal Information
    • Editorial Board Members
    • Reviewer Panel
    • Abstracting and Indexing
    • Journal Policies
    • Our CrossMark Policy
    • Publication Ethics
    • Issue in Progress
    • Current Issue
    • Past Issues
    • Instructions for Authors
    • Article processing fee
    • Track Manuscript Status
    • Get Publication Certificate
    • Join Editorial Board
    • Join Reviewer Panel
  • Contact us
  • Downloads

eISSN: 2582-8185 || CODEN: WJARAI || Impact Factor 8.2 ||  CrossRef DOI

Research and review articles are invited for publication in March 2026 (Volume 29, Issue 3) Submit manuscript

Secure Code Deployments with Policy-as-Code Enforcement in Identity-Driven Zero Trust Automation in GitOps

Breadcrumb

  • Home
  • Secure Code Deployments with Policy-as-Code Enforcement in Identity-Driven Zero Trust Automation in GitOps

Ramesh Pandipati *

InfoVision Inc, TX, USA.
 
Review Article
World Journal of Advanced Research and Reviews, 2024, 21(03), 2711-2719
Article DOI: 10.30574/wjarr.2024.21.3.0790
DOI url: https://doi.org/10.30574/wjarr.2024.21.3.0790

 

Received on 30 January 2024; revised on 19 March 2024; accepted on 28 March 2024
 
This research presents an identity-driven Zero Trust architecture for GitOps-managed Kubernetes environments, integrating continuous authentication, least-privilege authorization, and automated policy enforcement. The proposed framework embeds policy-as-code validation using Open Policy Agent (OPA) and OIDC-based workload identity into ArgoCD pipelines to enforce explicit authorization at every stage of deployment. Evaluated across multi-cluster AWS deployments, the architecture achieved 99.7% policy compliance, 87% reduction in unauthorized access attempts, and 73% decrease in vulnerability exposure time, with only an 8% operational overhead. By eliminating long-lived credentials and integrating context-aware, short-lived tokens, it enables real-time security posture validation without impeding deployment velocity. The results confirm that Zero Trust can coexist with DevOps agility through identity-centric automation. This work contributes a scalable model for continuous verification and compliance in GitOps workflows, redefining deployment security from static perimeter defense to dynamic, context-aware trust evaluation.
 
Zero Trust; GitOps; CI/CD; Identity Management; Cloud Security; Policy-as-Code
 
https://wjarr.com/sites/default/files/fulltext_pdf/WJARR-2024-0790.pdf

Preview Article PDF

Ramesh Pandipati. Secure Code Deployments with Policy-as-Code Enforcement in Identity-Driven Zero Trust Automation in GitOps. World Journal of Advanced Research and Reviews, 2024, 21(3), 2711-2719. Article DOI: https://doi.org/10.30574/wjarr.2024.21.3.0790

Copyright © Author(s). All rights reserved. This article is published under the terms of the Creative Commons Attribution 4.0 International License (CC BY 4.0), which permits use, sharing, adaptation, distribution, and reproduction in any medium or format, as long as appropriate credit is given to the original author(s) and source, a link to the license is provided, and any changes made are indicated.

All statements, opinions, and data contained in this publication are solely those of the individual author(s) and contributor(s). The journal, editors, reviewers, and publisher disclaim any responsibility or liability for the content, including accuracy, completeness, or any consequences arising from its use.

Get Certificates

Get Publication Certificate

Download LoA

Check Corssref DOI details

Issue details

Issue Cover Page

Editorial Board

Table of content

Copyright © 2026 International Journal of Science and Research Archive - All rights reserved

Developed & Designed by VS Infosolution