We're back in July to welcome an international guest - none other than CNCF Ambassador Alessandro Vozza - with sponsorship and support from Solo.io.

Here's the agenda for the night:

6:00pm - Food and drink
6:30pm - Look Ma, no sidecars! - Alessandro Vozza, Solo.io
7:15pm - Break
7:30pm - My container image has 500 vulnerabilities, now what ? - Matt Jarvis, Snyk
8:15pm - Wrap up

Look Ma, no sidecars! (Alessandro Vozza)

The sidecar model of delivering service mesh to applications in a cluster has drawbacks that limited adoption at scale and performance; a new model introduced in the ambient mode of Istio aims at reducing complexity and overhead and delivering secure application networking at both L4 and L7 with zero changes needed at the pod level.

My container image has 500 vulnerabilities, now what ? (Matt Jarvis)

As security becomes a bigger concern in the world of containers and Kubernetes, using vulnerability scanning tooling in our workflows is becoming increasingly common. But many container images can show tens if not hundreds of vulnerabilities, particularly if they are built using upstream base images from public repositories. If your container has a huge amount of vulnerabilities, what do you do ? Many of us will reach information overload when faced with such a list, and struggle to work out what actions we should take. In this talk, we’ll look at how container images are constructed, understand how potential vulnerabilities can get into our images, and explore how we can prioritize and remediate the vulnerabilities we find. Take control of your vulnerabilities !