Securing GitOps Supply Chain with Sigstore and Kyverno - Roberto Carratala & Faz Sadeghi, Red Hat
In this session, we will present how to secure GitOps supply chain by signing and verifying container images within the Argo Workflows pipelines, using open source projects such as Sigstore and Kyverno. We will demonstrate how to eliminate security risks on the software supply chain by signing all container images in public or private registries and ensuring no malicious images are deployed in Kubernetes clusters.
Негізгі бет Securing GitOps Supply Chain with Sigstore and Kyverno - Roberto Carratala & Faz Sadeghi, Red Hat
Пікірлер