Overview
Explore a practical approach to implementing CI/CD security gating in this 20-minute conference talk by Ben Hirschberg from ARMO. Learn how to integrate security validations and checks into automated CI/CD processes using developer and cloud native tools such as Flux, ArgoCD, VSCode, CLIs, and open source security tools. Discover techniques for monitoring and enforcing security within the development context and workflow, covering common issues like misconfigurations, code vulnerabilities, and registry scanning. Gain insights from a real-world, end-to-end code example demonstrating how to incorporate effective security gates into popular open source and GitOps tooling, enhancing your CI security hygiene and preventing threats from propagating to GitHub repositories and production environments.
Syllabus
A Practical Guide to CI/CD Security Gating - Ben Hirschberg, ARMO
Taught by
CNCF [Cloud Native Computing Foundation]