CNCF On-Demand Webinar: Policy as code - what Helm developers need to know about security

CNCF Online Programs
May 13 - 19, 12:00 AM (PDT)

Modern Kubernetes applications are often composed of components packaged in the form of Helm charts. These modular applications help teams deliver innovation to market faster than ever.

About this event

Modern Kubernetes applications are often composed of components packaged in the form of Helm charts. These modular applications help teams deliver innovation to market faster than ever. However, building applications from components that may not have been designed to work together requires careful consideration of security architecture and risks. This presentation will explain the risks that Helm development teams need to be aware of, and demonstrate how to mitigate those risks using policy as code, open standards such as the Open Policy Agent (OPA) and open source IaC scanners such as Terrascan. Policy as code enables teams to establish baseline policies that define what components are allowed to do, and enables programmatic enforcement of those policies during development and at runtime. This effectively creates guardrails that ensure the application operates within well-defined, safe boundaries, minimizes attack surface, and avoids risky behavior.

Featured Presentation

Speaker

  • Cesar Rodriguez

    Cesar Rodriguez

    Accurics

    Head of Developer Advocacy


  • Organizers

  • Ihor Dvoretskyi

    Ihor Dvoretskyi

    Cloud Native Computing Foundation

    Organizer

    View Profile
  • Kristi Tan

    Kristi Tan

    CNCF

    Organizer

    View Profile
  • Chris Aniszczyk

    Chris Aniszczyk

    Linux Foundation (CNCF)

    Organizer

    View Profile
  • Libby Schulze

    Libby Schulze

    CNCF

    Organizer

    View Profile