All OpsCast Conversations
Search and filter through the complete archive of DevOps, Cloud Security, and Kubernetes discussions.
Shifting Left with Snyk: Integrating Security from Code to Production
In this episode, we dive into Snyk's comprehensive security platform, exploring how its tools and features enable developer-first security, from SAST and SCA to container and IaC scanning, and how these integrate into the developer workflow for enhanced security and compliance. We'll discuss priority scoring, reachability analysis, and custom integrations. Join us as we examine the potential of Snyk to shift security left, making it an integral part of the development process. This approach can significantly enhance the security posture of applications from the outset, reducing vulnerabilities and ensuring compliance.
Unlocking Code Excellence with SonarQube: Scaling SAST and CI/CD Security
Discover how SonarQube Enterprise can elevate your code quality and security posture by enforcing Quality Gates, customizing SAST rules, and integrating with popular CI/CD tools. Learn from experts how to leverage SonarQube for comprehensive code analysis and security hotspot triage. This episode dives into the nuances of SonarQube as a code scanner versus dedicated SAST tools and explores best practices for portfolio reporting and integration with GitHub, GitLab, and Azure DevOps.
GitOps at Scale with Flux v2: Multi-Cluster Bootstrap and Reconciliations
How to scale GitOps operations to hundreds of Kubernetes clusters using Flux CD bootstrap controllers.
Mastering AWS IAM Policies: Attribute-Based Access Control (ABAC) vs RBAC
Designing fine-grained permission boundaries inside AWS workloads using resource tags and attributes.
Designing Secure VPC Architectures: Transit Gateways and PrivateLink
Best practices for enterprise cloud networking, traffic segregation, and secure service ingestion.
Zero-Trust Service Meshes: Hardening Workload Identities with Linkerd
Enforcing secure process identities and automatic mTLS encryption for microservices.