Explore a comprehensive workshop on integrating security into the DevOps lifecycle using open source tools. Learn how to install, configure, and customize security tools for use throughout the DevOps process. Discover the capabilities of Trivy for securing container images, Dockerfiles, Kubernetes manifests, and Infrastructure as Code (IaC) like Terraform. Delve into operationalizing security controls with Starboard, automating Trivy and other security tools to provide continuous security assurance for workloads and Kubernetes clusters. Gain hands-on experience in embedding security from the start of development, empowering developers and operators to build robust security controls from day one.
First Steps to Full Lifecycle Security with Open Source Tools
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
First Steps to Full Lifecycle Security with Open Source Tools - Rory McCune & Anais Urlichs
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Introduction to DevOps: Practices and Tools
-
Trivy: The All-in-One Open Source Security Scanner
-
Scan, Patch, VEX - Using Open Source Tools to Manage Vulnerabilities in Containers
-
Actions in the Wild: Usability and Ease of Use of Open Source Security Tools
-
The Myriad Paths to Improving Open Source Security
-
5 Open Source Security Tools All Developers Should Know About
