Securing the software supply chain entails knowing exactly what components are being used in your software products—everything that impacts your code as it goes from development to production.
Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies. This allows using familiar tools such as kubectl, git, and kustomize to manage policies. Kyverno policies can validate, mutate, and generate Kubernetes resources. The Kyverno CLI can be used to test policies and validate resources as part of a CI/CD pipeline.
Software supply chain attacks have increased 650% in 2021! The SLSA framework for the security and integrity of software artifacts through a supply chain provides detailed guidelines on securing a software supply chain. Join Jim, and learn SLSA, how you can take an insecure image and add signing and verification of the image using Cosign and Kyverno to comply with SLSA guidelines.