As more tools become available to automate security in Helm, we will explore how Helm plays a role in protecting K8 Applications in two hands-on and informative talks!
In the first half we provide an overview and understanding of the power of Helm charts in the Kubernetes security ecosystem and the new tools being used with Helm 3.
You will also get to see how Helm chart applications can be deployed, and get hands-on with how to inspect container processes, control your application state, and manage reproducible security in your builds.
We’ll also dive into:
– Why use trusted registries such as ChartCenter
– Vulnerabilities and mitigation in your chart’s dependencies
– More details around RBAC and cluster roles
Deep Datta is a Product Manager with JFrog managing the GoCenter – The Central Go Modules Repository. He loves encouraging diversity in tech and he has a passion for helping people join open source communities. Before JFrog he helped build and manage open source programs at Indeed and Benetech.org. Outside of work, Deep likes to travel the world, go to live music events, learn Golang, and find beautiful places to go hiking.
In the second half, we take a look at Helm Chart scanning and auditing, both as admission controls and as part of your CI/CD pipeline.
Helm is great as it provides a package abstraction. However, how do you know if the YAMLs your are deploying to your clusters follow Kubernetes security and other best practices?
We will see how Kubernetes admission controllers, like Kyverno, can be used to scan and report violations to best practices. We also demonstrate how static validation tools can be incorporated into your CI/CD pipeline to report security issues before a Helm Chart is deployed.
Jim Bugwadia is a founder and the CEO at Nirmata – the Kubernetes Management Plane for Enterprises. Jim works closely with customers and the Kubernetes community to build solutions that help adoption of cloud-native technologies.
View the virtual meetup recording:
Interested in hearing about our next meetup?