Implementing DevSecOps in Production with Stackrox and Tekton - DevConf.CZ 2024 скачать в хорошем качестве

Implementing DevSecOps in Production with Stackrox and Tekton - DevConf.CZ 2024

Speaker(s): Roberto Carratalá, Philipp Bergsmann --- In this session, we will demonstrate how to implement DevSecOps pipelines in production using Stackrox and Tekton and other Open Source Security tools such as Sigstore among others. We will demonstrate how to eliminate security risks on our CICD pipelines implementing DevSecOps, and securing the software supply chain providing continuous scanning and runtime protection. On the other hand, we will demonstrate how to shift the security left, detecting and remediating vulnerabilities and misconfigurations that could affect the security of our workloads in production. Finally we will depict how to provide to the developers automated guardrails, integrating Stackrox with DevOps and security tools such as Sigstore and Quay among others, building robust productive DevSecOps pipelines. --- Full schedule, including slides and other resources: https://pretalx.com/devconf-cz-2024/s...