It's Time to Jump on the Secure GitOps Bandwagon
In the last year, Kubernetes GitOps has become more pervasive in many organizations helping them enhance CI/CD by removing manual kubectl commands, improving source code control, and keeping release v …
| Talk Title | It's Time to Jump on the Secure GitOps Bandwagon |
| Speakers | Ricardo Aravena (SRE Manager, Rakuten) |
| Conference | Open Source Summit + ELC North America |
| Conf Tag | |
| Location | San Diego, CA, USA |
| Date | Aug 19-23, 2019 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
In the last year, Kubernetes GitOps has become more pervasive in many organizations helping them enhance CI/CD by removing manual kubectl commands, improving source code control, and keeping release versions consistent.We will cross-check some of the more popular GitOps open-source tools such as Draft, Flux and Argo together with security considerations for real-world production environments. Which one could be more vulnerable and how would you harden them? How to securely plug them into serverless frameworks like Knative? What about building and verifying container images with open-source projects like Bazel, Kaniko, Grafeas, Notary, and Anchore? Can they leverage container isolation mechanisms like gVisor and Kata Containers?By the end of the session, the audience will have a good understanding of the current state of the GitOps ecosystem in the open source world and how to leverage several tools to enhance, secure and increase agility in production environments.
