Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
We are always actively working on the configuration for Renovate and will continue to fine-tune it. Having pull requests created for every upstream version change will also optimise the generation of automated changelogs (using the excellent Release Drafter GitHub Action we were already using on Lagoon).
We are always actively working on the configuration for Renovate and will continue to fine-tune it. Having pull requests created for every upstream version change will also optimise the generation of automated changelogs (using the excellent Release Drafter GitHub Action we were already using on Lagoon).
We've also integrated vulnerability scanning into the CI process - using Aqua Security's Trivy scanner to scan each image as it's created and saving the results in the CI run. We'll cover securities and vulnerabilities in a later post!
Related posts
- Kubernetes Hardening Tutorial Part 3: Authn, Authz, Logging & Auditing
- [open-source] Validkube - Validate, Clean and Secure your K8s YAML
- Horus: An OSINT / digital forensics tool built in Python (formerly 'Sentinel')
- Show HN: Horus – An OSINT / digital forensics tool built in Python
- A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons