Unless you’ve been living under a rock, you’re probably aware that Sigstore has been making waves in the software supply chain space—and that’s a great thing because we definitely need more in this area. With their Cosign tool, it allows for ensuring many of these practices are implemented such as image signing. Harbor, one of the most popular open-source registries out there, recently added support for Cosign in version 2.5. In this blog, Chip Zoller will show how you can play around with this combination and how they can work together with Kyverno. Read the blog
Evolving DevSecOps to Include Policy Management
Policy management is essential to scale cloud environments and is key to secure DevOps practices. It enables organizations to manage policies put in place that secure the cloud environment, ensure Kubernetes configurations are secure and enable the continuous monitoring of a company’s overall security posture. To confidently build cloud applications in Kubernetes, DevSecOps teams need to lay the foundation that avoids pitfalls by accepting these DevSecOps realities and applying policy management effectively. Read the blog
Kyverno 1.7: Idempotent policies are coming
A blog from Charles-Edouard Brétéché highlights a new set of policies (Idempotent policies) coming as part of Kyverno 1.7. Charles provides a new way to manage automatically generated rules that doesn't require the policy to be altered, enabling easier use of a GitOps approach when running kyverno policy engine in Kubernetes clusters. Read the blog
ON-DEMAND RECORDINGS
Cloud Native On-Demand: Protecting Software Supply Chains using Kyverno
Securing the software supply chain security has become extremely critical for all organizations. While emerging standards like SLSA can help secure build environments, how should Kubernetes administrators verify the integrity of their container images in production? In this session, Jim Bugwadia and Chip Zoller will demonstrate how Kyverno, a Kubernetes native policy engine, can be used to verify image signatures and in-toto attestations during admission controls via periodic scans. The session will introduce and demonstrate new features, coming in Kyverno 1.7, for flexible policy-based verification of images to help secure Kubernetes software supply chains. Watch the on-demand
AND MORE...
Kyverno Certification
We launched Kyverno Certification program during KubeCon North America. Since then we have had 500 people registered for the certification. Don't wait, take the certification and claim your badge!
Nirmata Enterprise Subscription for Kyverno.
With over 7 million Kyverno downloads deployed over hundreds of organizations, the open-source tool is becoming the de facto standard for policy configuration and management for cloud-native enterprises. Meet Nirmata Enterprise Subscription for Kyverno! Which includes commercial support, and training for Kyverno.
Nirmata and AWS Solution brief
Download this brief and learn how Enterprises are ensuring Kubernetes Security, Compliance, and Operational readiness for Amazon Web Services with Nirmata
.png?upscale=true&width=1120&upscale=true&name=Nirmata%20Newsletter%20Email%20Banner%20(3).png)
.png?upscale=true&width=1120&upscale=true&name=Nirmata%20KubeCon%20Europe%202022%20(1).png)
