Popeye

Popeye is an open-source Kubernetes cluster sanitizer that scans live Kubernetes clusters to detect misconfigurations, stale resources, and policy violations by analyzing deployed workloads against best practices including resource utilization metrics, RBAC rules, container configurations, network policies, and security settings to identify issues such as port mismatches, unused resources, missing probes, naked pods, and capacity warnings. The read-only tool integrates into workflows as a standalone CLI, Docker container, or CronJob within clusters to provide comprehensive linting reports with severity-rated findings and a Popeye Score, enabling operators and DevOps teams to maintain healthy, secure, and optimized Kubernetes deployments while reducing cognitive overhead in managing complex cluster configurations.