One of the easiest, but most effective, things you can do to secure your systems is to scan application images for known vulnerabilities. In this session Liz will talk about why scanning is so important, and show how to include automated scanning in a CI/CD pipeline, using the open-source tool Trivy (https://github.com/aquasecurity/trivy)
Resources mentioned in this session:
Liz Rice is VP Open Source Engineering with container security specialists Aqua Security, looking after projects including Trivy, Tracee, kube-hunter and kube-bench. She is chair of the CNCF’s Technical Oversight Committee, and was Co-Chair of the KubeCon + CloudNativeCon 2018 events in Copenhagen, Shanghai and Seattle.
She has a wealth of software development, team, and product management experience from working on network protocols and distributed systems, and in digital technology sectors such as VOD, music, and VoIP. When not writing code, or talking about it, Liz loves riding bikes in places with better weather than her native London, and competing in virtual races on Zwift.