Keeping Up with CVEs: Finding Needles in Haystacks - Practical Vulnerability Assessment
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Introduction
Welcome
Why is the graph looking like this
Example
Vulnerability Scanner
Vulnerability Analysis
Image Scanners
Vulnerability Impact
Kubernetes
Release Engineering
Kubernetes Enhancement Proposal
Distroless
Base
Bash Static
QProxy
Not a perfect solution
Container images are complex
Imperfect solutions have benefits
Reduce churn
Vulnerability detection
How Kubernetes maintainers feel
Focus on code execution path
Give engineers breathing space
Create a list of images
Automated jobs
Questions
Taught by
CNCF [Cloud Native Computing Foundation]