In this series of blog posts, we will be looking at using OPA gatekeeper as the admission controller for our Kubernetes cluster. We will be focusing specifically at creating gatekeeper policies for networking inside the Kubernetes cluster. This article assumes Read more…
In this series of blog posts, we will be looking at deploying OPA gatekeeper as the admission controller for our Kubernetes cluster. We will be focusing specifically on creating gatekeeper policies for implementing Network Policy inside the Kubernetes cluster. This Read more…
In this series of blog posts, we will be looking at deploying OPA gatekeeper as the admission controller for our Kubernetes cluster. We will be focusing specifically on creating gatekeeper Network Policy inside the Kubernetes cluster. If you want to Read more…
Introduction No matter what we own, one thing that we always love to do is to customize it. We do it to either make them look and feel the way we want or to have a better sense of control Read more…
Introduction In this article, we’ll see how we can block “latest” image tag, that is, denying the use of images with the “latest” tag. Yes! You read it right. But why block the “latest” tag? We’ll see that below. What’s Read more…
Introduction This post is about the policy that we’ll use to restrict the use of images only from trusted repositories and the reason to require trusted image repos in an organization. Why do we need this policy? One reason to Read more…
Introduction This is the last post in this series about OPA policies under the category “CI/CD and Secure Configurations”. This is not related to OPA and is quite different from the other articles. We’ll look into a policy to deny Read more…
Introduction In a usual DevOps pipeline process, the idea of security comes quite late in the process, right before the deployment. Security testing at this point has a major issue. The problem is that in many cases apart from the Read more…
Introduction This series of blog posts is all about OPA policies to have a secure CI/CD and pods configuration. We’ll be looking at the various policies and why we’ll be needing it in our organizations. Open Policy Agent (OPA) is Read more…
I didn’t attend any AWS reInvent or reInforce conferences to date, however, I never missed any AWS reInvent Security Announcements !! Even this year I watched the reinvent sessions and keynotes while relaxing at home with some popcorn and drinks Read more…