DevSecOps with Confidence

September 4, 2020

How to ship code faster in production without sacrificing security? How to maintain consistency in CI/CD pipelines with growing fragmentation of Kubernetes? These are quintessential challenges faced by enterprises. DevOps practitioners need a mental model & actionable toolset to build robust software delivery pipelines. Security of containers starts with a secure base image. Tanzu Build Service automates code-to-container workflows. Rebase without a rebuild delivers CVE fixes at scale. Harbor is embedded in the CI/CD pipeline to further secure images with RBAC, scan for CVEs & sign images as trusted. Traffic management in Tanzu Service Mesh helps with canary deployments. Metrics driven canaries, Testcontainers and API contracts help improve reliability of pipelines. We’ll demonstrate a GitOps based path to prod using Argo. Come to this session to learn how Tanzu simplifies DevSecOps. Maria Gabriella Brodi: Sr. Solution Engineer at VMware Prasanna Upperi: Senior Platform Architect at VMware Slides: https://www.slideshare.net/Pivotal/devsecops-with-confidence

Practical DevSecOps Using Security Instrumentation

The traditional “outside in” scanning and firewalling approach to application security has failed. After de...

Rethinking Security from Scratch: The Case for Shifting Container Security from the Edge to the Core

In this blog post, you will see how new DevSecOps thinking is necessary as we look at the impact a developm...

DevSecOps with Confidence

Previous

Next

DevSecOps with Confidence

Previous

Next

Related content in this Stream

What is VMware Tanzu? I get asked this question a lot and, you know, I try to explain it. If you want a really good explanation, you should check out a new book on the topic, DevSecOps in Practice...

With VMware Tanzu Application Platform 1.4, available now, teams can cut down on developer toil and enhance operations and security, improving their overall DevSecOps experiences and outcomes.

VMware announces new capabilities in Tanzu Application Platform that enhance developer and application operator experiences for any Kubernetes environment, increase supply chain security, and more!

VMware is innovatively leveraging Bitnami's capabilities to address the security and tooling challenges faced by enterprises in their multi-cloud and app modernization initiatives.

Learn how enterprises and ISVs can use VMware Image Builder to securely automate the processes of packaging, verifying, and publishing applications and save their DevSecOps team’s valuable time.

Tanzu Application Platform version 1.2 focuses on readiness of more environments, from cloud-first to highly regulated with an enhanced DevSecOps experience.

The main difference between DevOps and DevSecOps is security automation, but the nuances and benefits are just as important. Learn more with VMware Tanzu.

Whether you’re new to or experienced with Cartographer—an open source project designed to build and manage modern, secure software supply chains—discover how it helps boost DevSecOps productivity.

Kpack, a Kubernetes-native container build platform and a powerful tool for DevSecOps teams, is now included in VMware Tanzu Community Edition.

Recently, security has emerged as one of the most important issues in DevOps for modern applications with open source tools being heavily in use. With this, we will look into DevSecOps featuring incre

This video demonstrates how you can use the VMware Tanzu Application Platform to help accelerate your organization's DevSecOps culture. We demonstrate how Tanzu Application Platform can use an outer l

This video demonstrates how you can use the VMware Tanzu Application Platform to help accelerate your DevSecOps culture. In it, we show how the Tanzu Application Platform can use an outer loop supply

This library of validated, production-ready container images will soon support virtual machine images, making it even easier for teams to implement DevSecOps practices.

Security as Code (SaC) is the methodology of codifying security tests, scans, and policies. Security is implemented directly into the CI/CD pipeline to automatically and continuously detect security v