Nirmata Control Hub

Nirmata is an AI-powered infrastructure governance platform built on top of Kyverno, the open-source Kubernetes policy engine. It provides enterprise-scale policy-as-code management across multiple Kubernetes clusters, cloud environments, and CI/CD pipelines. Core capabilities: - Natural language policy authoring that generates Kyverno policies (YAML and CEL) without requiring manual YAML writing - AI-driven detection of misconfigurations across clusters, pipelines, and cloud accounts, with impact-based triage (blast radius, critical paths) - Automated remediation through AI-generated pull requests, pipeline actions, and runtime fixes, with rollback safety and automatic fix verification - Centralized multi-cluster governance with dashboards, reporting, and drift control via continuous verification - Compliance evidence collection mapped to frameworks including CIS, PCI, HIPAA, and SOC 2 - Violation workflow management with integrated exception handling and team/service grouping - GitOps-compatible workflow with signed pull requests, approver steps, and full change history - Enterprise controls including SSO (SAML/OIDC), granular RBAC, tenant separation, tamper-proof audit logs, and data residency options - Support for air-gapped and on-premises environments via lightweight agents Use cases include security standardization, pipeline governance, policy enforcement, resource optimization (quota enforcement, cleanup policies), and continuous compliance. Nirmata differentiates from traditional CSPM by focusing on workload configuration inside Kubernetes clusters using admission control to proactively block or mutate non-compliant resources, rather than monitoring underlying cloud infrastructure.