Accompanying repo for my talk on Shift-Left Security in a Containerized World at DevOps World conference
🔥 You can access the slides here 🖱️
- Container Security Best Practices
- Container Security Checklist with Risk Scores
- Fun: Container from Scratch
"An ounce of prevention is worth a pound of cure" - Benjamin Franklin
Code Scanning
- GoSec (Go)
- Bandit (Python)
- NodeJsScan (NodeJS)
- SpotBugs (Java)
Kubernetes Manifest Scanning
Container Image Scanning
Code Scanning (same as above)
DAST
IAST
Kubernetes Manifest Scanning (same as above)
Container Image Scanning (same as above)
Kubernetes Admission Controller
Security Gates
Network Security
Behavior Security
Access Security
Sandboxing
OS Hardening