Myvideo

Guest

Login

Building Images for the Secure Supply Chain - Adrian Mouat, Chainguard

Uploaded By: Myvideo
1 view
0
0 votes
0

Don’t miss out! Join us at our upcoming event: KubeCon CloudNativeCon Europe 2023 in Amsterdam, The Netherlands from April 17-21. Learn more at ​. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects. Building Images for the Secure Supply Chain - Adrian Mouat, Chainguard Security scans getting you down? Users complaining they can't verify your images? Have no idea if your systems are vulnerable to the latest exploit? Want to improve your SLSA level but don't know where to start? You're not alone -- all organisations face these issues. This talk will walk through techniques and tooling that you can use today to address these concerns. In particular it will cover: - The distroless philosophy; why minimal images can save you from scan report purgatory - The importance of updating images and dependencies - Using apko to build container images with SBOMs and complete reproducibility - Signing images with Sigstore The best bit? These tools and techniques will make your systems simpler and faster. Adding security doesn't have to mean hurting usability or productivity.

Share with your friends

Link:

Embed:

Video Size:

Custom size:

x

Add to Playlist:

Favorites
My Playlist
Watch Later