Explore how The New York Times implemented automated configuration and permissions testing for GitOps using OPA Conftest in this conference talk. Learn about the challenges of managing multi-tenant deployments securely and how the CICD team developed a self-service platform that allows developers to deploy with autonomy. Discover the benefits of using OPA conftest for policy testing against structured configuration at the PR level, enabling a "trust, but verify" approach to deployment. Gain insights into policy set-up, best practices, and implementation within a GitOps mindset. Follow the speakers as they discuss the journey from top-down checks in Kubernetes and ArgoCD to a more comprehensive security approach that safeguards systems while empowering feature developers.
Automating Configuration and Permissions Testing for GitOps with OPA Conftest
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Introduction
Agenda
Background
Why the IDP
Feedback
Demo
Exceptions
Wrapup
Manifesting
Conclusion
Taught by
CNCF [Cloud Native Computing Foundation]
