Scaling Helm for Enterprise DevOps: Secure, Efficient, and Automated
In this episode, we delve into the world of Helm, exploring how to engineer secure charts at scale, leveraging tools like Trivy and Checkov for security scanning, and integrating with GitOps for streamlined deployment. We'll discuss best practices for testing, managing secrets with HashiCorp Vault, and utilizing Helmfile for multi-environment orchestration. Tune in for expert insights on securing your Kubernetes deployments with Helm.
Speakers: daniel, diana
00:00
00:00
Show Notes
This episode covers advanced Helm chart engineering, including security scanning with Trivy and Checkov, JSON schema validation for values, Helm Secrets integration with HashiCorp Vault, library charts for shared templates, Helmfile for multi-environment management, Helm test frameworks, Chart museum and OCI registries, and signed charts with cosign. For further reading, check out the Helm documentation and the CNCF landscape for security tools.
Key Takeaways
- Implementing Helm chart security scanning with Trivy and Checkov
- Utilizing JSON schema validation for values and Helm Secrets with HashiCorp Vault integration
- Leveraging library charts for shared templates and Helmfile for multi-environment management
- Adopting Helm test frameworks for automated testing
- Publishing and managing charts with Chart museum and OCI registries, including signed charts with cosign
Listener Comments (0)
No comments yet. Be the first to share your thoughts!
Topic Pillars
DevOps|DevSecOps|Kubernetes|Platform Engineering|CI/CD|IaC
#GitOps
#Helm
#Kubernetes
#DevSecOps
#Trivy