DevSecOps with Confidence

September 4, 2020

How to ship code faster in production without sacrificing security? How to maintain consistency in CI/CD pipelines with growing fragmentation of Kubernetes? These are quintessential challenges faced by enterprises. DevOps practitioners need a mental model & actionable toolset to build robust software delivery pipelines. Security of containers starts with a secure base image. Tanzu Build Service automates code-to-container workflows. Rebase without a rebuild delivers CVE fixes at scale. Harbor is embedded in the CI/CD pipeline to further secure images with RBAC, scan for CVEs & sign images as trusted. Traffic management in Tanzu Service Mesh helps with canary deployments. Metrics driven canaries, Testcontainers and API contracts help improve reliability of pipelines. We’ll demonstrate a GitOps based path to prod using Argo. Come to this session to learn how Tanzu simplifies DevSecOps. Maria Gabriella Brodi: Sr. Solution Engineer at VMware Prasanna Upperi: Senior Platform Architect at VMware Slides: https://www.slideshare.net/Pivotal/devsecops-with-confidence

Previous
Rethinking Security from Scratch: The Case for Shifting Container Security from the Edge to the Core
Rethinking Security from Scratch: The Case for Shifting Container Security from the Edge to the Core

In this blog post, you will see how new DevSecOps thinking is necessary as we look at the impact a developm...

Next Video
Moving Toward DevSecOps: A Case of a Framework Standardization Team
Moving Toward DevSecOps: A Case of a Framework Standardization Team

Learn from the work on the standardization of software frameworks in the R&D department of a large Japanese...