Posted on

Introduction to Kubernetes Security

Kubernetes is fundamentally a complex system with lots of different potential attack vectors aimed at data theft currency mining and other threats. Brice Fernandes started us off with a discussion on how to secure your operations to Kubernetes using GitOps best practices. Liz Rice then followed up on the current state of Kubernetes security-related features as well as best practices and other tips on how to secure your cluster.

GitOps Is an Operations Model for Kubernetes

According to Brice, Kubernetes clusters were traditionally accessed by developers directly, using the command line tool `kubectl`. There are of course many issues with having your development team directly accessing the cluster in this way. The biggest problem with this is that it is really hard to audit and track who did what, when.

Posted on

A Production-Ready Checklist for Kubernetes

How do you know when you're ready to run your Kubernetes cluster in production? In this blog series, we're going to look at what's typically included in a Production Readiness checklist for your cluster and your app.

These checklists were put together by Brice Fernandes (@fractallamda), a Weaveworks customer success engineer. If you're lucky enough to attend an upcoming hands-on workshop led by Brice, production readiness will be a topic that he'll be deep diving on.

Posted on

Securing Developer Workflows

A few weeks ago, Weaveworks and Snyk delivered a webinar, entitled, "Secure GitOps pipelines for Kubernetes." The theme of the webinar was on how to improve the security of your development workflows — from Git to production.

Brice Fernandes, Customer Success Engineer at Weaveworks kicked off the talks with an in-depth look on what GitOps is and how it improves the overall security of your CICD pipelines.

Posted on

Continuous Security for GitOps

Earlier this month, Weaveworks hosted a webinar on securing your GitOps pipelines. Speakers included Andrew Martin (@sublimino) of ControlPlane as well as Weaveworks’ customer success engineer, Brice Fernandes (@fractallamda).

Brice gave us an overview of what GitOps is, and why it is a logical and more secure way for large development teams to update applications in Kubernetes.

Posted on

Delivering Quality at Speed With GitOps

At the inaugural online summit "Cloud Native Live" hosted by our friends at Twistlock, Weaveworks Customer Success Engineer, Brice Fernandes (@fractallambda) presented "Delivering Quality at Speed with GitOps".

Brice discussed how, by introducing and implementing GitOps best practices into your Kubernetes deployment pipelines, DevOps team can gain velocity without sacrificing quality.