This session focuses on integrating security measures earlier in the software development lifecycle through policies in Continuous Integration/Continuous Deployment (CICD) pipelines. We'll explore the role of tools like Kyverno and Kyverno JSON in enforcing policies to detect and enable remediation of security issues before they reach production. By implementing shift-left security practices, attendees will learn how to mitigate risks early in the development process and seamlessly integrate policy enforcement into existing CICD workflows.