Accepting Design Partners

Pre-flight verification
for Kubernetes.

Kubernetes has no safety net. Yamlr is that safety net.

Version-AwareAPI Compatibility
Graph-BasedCross-Resource Integrity
Local-FirstZero Data Egress
01

What It Catches

Configuration errors that break production.

Ghost Services

Selectors that match no running Pods

Port Mismatches

Service targetPort ≠ container port

Deprecated APIs

Removed apiVersions for your K8s target

Pod Security Standards

Baseline + Restricted: runAsNonRoot, privileged, hostPath

Broken References

ConfigMaps, Secrets, PVCs that don't exist

Image Tag Risks

Nondeterministic :latest or missing tags

Integrations
GitHub Actions·PR comments
VS Code·Extension
Pre-commit·Hook

Dynamic Evaluation Pipeline

Build. Dry-run. Deploy.

Step 01

Ingest

Parsing & Discovery

Parse fragmented manifests and reconstruct resource identities — even in malformed YAML.

Step 02

Contextualize

Graph Construction

Maps cross-resource relationships — Services to Deployments, ConfigMaps to Pods — into a single structural graph to surface orphaned references and broken links.

Step 03

Verify

Schema Alignment

Validating structural integrity against the definitive Kubernetes OpenAPI schema for your target cluster version.

Step 04

Heal

Schema-Based Remediation

Applying precise, comment-preserving corrections derived from the Kubernetes OpenAPI specification.

Schema-Grounded Remediation

AI-based tools suggest. Yamlr enforces.

No heuristics. No probabilistic output. Only structurally valid, version-accurate corrections derived from the Kubernetes OpenAPI specification.

S1Preview (Dry Run)
S2Apply (Commit)
S3Auto-Heal (CI/CD)
S1
S2
S3
Verified Output

Get started.

Catch production failures before they become cluster state.

macos Setup

Get the Signed Binary

Automate your installation with our secure shell script, or tap directly into our Homebrew repository.

$ brew tap yamlr/tap && brew install yamlr
Signed Binary
Zero Dependencies

Works without cluster access

Pricing & Scale

The upgrade unlocks scale, not features.

The complete safety engine and structural diff previews are included in the free tier. Upgrade to remove remediation limits and enable organization-wide policy enforcement.

Free Tier

Individual

Production-grade validation for individual engineers. Full healing engine with a daily remediation cap.

  • Unlimited scanning
  • Full cross-resource graph validation
  • Structural diff previews
  • Up to 5 applied remediations per day
  • Standard schema updates
Download CLI

Pro Tier

Teams

Organization-wide policy enforcement and configuration control for production environments.

  • OPA / Kyverno policy integration
  • GitHub Actions PR comments
  • Unlimited remediations
  • Version migration packs
  • Commercial SLA & priority support
Get a Demo

Looking for a team license? Contact us.