Explore a comprehensive demonstration on utilizing kpack for building container images on Kubernetes clusters. Discover the advantages of kpack, including its declarative builder resource and use of unprivileged Kubernetes primitives. Learn how kpack exports OCI-compatible images, orchestrates around source code, and schedules rebuilds based on changes to source, stack, or buildpacks. Delve into kpack's internal use of Cloud Native Buildpacks and its potential to enhance supply chain security. Understand how kpack integrates with sigstore projects like cosign, provides a parameterless and hermetic build process for higher SLSA levels, and automatically generates SBOMs. Gain valuable insights into improving security practices, particularly in the realm of supply chain security, through this informative conference talk.
Trust in Honk, Tie Up Your YAML - A Kpack Experience for Container Image Building
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Trust in Honk, Tie up Your Yaml: A Kpack Experience - Ram Iyengar, Cloud Foundry Foundation
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Better Build Pipelines with OpenSSF Projects - Enhancing Trust and Security
-
Securing Kubernetes Manifests with Sigstore Cosign - Options and Best Practices
-
Spicing up Container Image Security with SLSA and GUAC
-
Open Tools for Secure Supply Chains in Kubernetes - From Release Engineering
-
Building Images for the Secure Supply Chain
-
Kicking Security Chain Attacks to the Curb with Kyverno and Notary in GitOps
