Se ha denunciado esta presentación.
Se está descargando tu SlideShare. ×

Kubernetes configuration and security policies with KubeLinter | DevNation Tech Talk

Kubernetes configuration and security policies with KubeLinter | DevNation Tech Talk

Descargar para leer sin conexión

With Kubernetes, implementing security policies can be challenging. First, developers, administrators, and security teams need to understand security policies in collaboration to have the best chance of successful adoption. Next, policy enforcement needs to integrate with developer workflows. Lastly, policies need to contain corrective action that is as close to the developer as possible. KubeLinter solves these problems by linting Kubernetes YAML files and Helm charts at the source: the developer.

In this session, we will evaluate KubeLinter by moving through a hands-on demo of the application, showing a use case for local machines and CI pipeline integration, and chatting about how best to integrate it into your organization:

KubeLinter, and its default checks
How you can leverage the application in your day-to-day operations
The open source StackRox community

With Kubernetes, implementing security policies can be challenging. First, developers, administrators, and security teams need to understand security policies in collaboration to have the best chance of successful adoption. Next, policy enforcement needs to integrate with developer workflows. Lastly, policies need to contain corrective action that is as close to the developer as possible. KubeLinter solves these problems by linting Kubernetes YAML files and Helm charts at the source: the developer.

In this session, we will evaluate KubeLinter by moving through a hands-on demo of the application, showing a use case for local machines and CI pipeline integration, and chatting about how best to integrate it into your organization:

KubeLinter, and its default checks
How you can leverage the application in your day-to-day operations
The open source StackRox community

Más Contenido Relacionado

Más de Red Hat Developers

Audiolibros relacionados

Gratis con una prueba de 30 días de Scribd

Ver todo

Kubernetes configuration and security policies with KubeLinter | DevNation Tech Talk

  1. 1. F25426 KubeLinter An open-source tool to create production-ready Kubernetes YAMLs 1
  2. 2. F25426 2 What Will Be Covered ● What is KubeLinter ● Why KubeLinter ● Installation, Setup, and Getting Started ● GeneralWorkflow ● Configuration and Enforcement ● Integration ● What’s Next!
  3. 3. F25426 3 Who Am I? Michael Foster ● CKA/AD/S certified ● 4 + years of Kubernetes experience ● Consulting background focused on Kubernetes adoption in various sectors ● StackRox -> RedHat for over a year
  4. 4. F25426 linkedin.com/company/red-hat youtube.com/user/RedHatVideos facebook.com/redhatinc twitter.com/RedHat 4 What is KubeLinter?
  5. 5. F25426 ● A command-line interface (CLI) for linting Kubernetes objects ● ~40 default policies for empowering Kubernetes best practices ● Configurations file for fine-tuned policy enforcement ● Simplicity in design, allowing for easy integration 5
  6. 6. F25426 linkedin.com/company/red-hat youtube.com/user/RedHatVideos facebook.com/redhatinc twitter.com/RedHat 6 Why KubeLinter?
  7. 7. F25426 ● Ad hoc security creates massive team friction ● Enforcement for the sake of enforcement slows down developers 7
  8. 8. F25426 8 ● Simplicity ● Kubernetes focused ● Easily identify misconfigurations ● Set configurations for specific folders, repositories, Helm Charts ● Documentation to provide further knowledge growth for users ● Integration into existing pipelines ● Build operational policy around defaults
  9. 9. F25426 9 Let’s Get Started!
  10. 10. F25426 Resources 10
  11. 11. F25426 1. GitHub: github.com/stackrox/kube-linter —> 2. Docs: docs.kubelinter.io/ 3. Join KubeLinter on Slack ————————-> 11
  12. 12. F25426 What is KubeLinter Red Hat Advanced Cluster Security 12
  13. 13. F25426 13 To Summarize
  14. 14. F25426 14 ● KubeLinter is a free, open source CLI to for checking your Kubernetes and Helm files against Kubernetes best practices. ● KubeLinter is a lightweight Go based CLI allowing portability and simplified configuration into your existing environments. ● KubeLinter is best deployed at the developer level and in your CI pipelines.

×