All OpsCast Conversations

Search and filter through the complete archive of DevOps, Cloud Security, and Kubernetes discussions.

Shifting Left with Snyk: Integrating Security from Code to Production
DevSecOps Cloud Security DevOps IaC
EP AI 2026-06-30

Shifting Left with Snyk: Integrating Security from Code to Production

In this episode, we dive into Snyk's comprehensive security platform, exploring how its tools and features enable developer-first security, from SAST and SCA to container and IaC scanning, and how these integrate into the developer workflow for enhanced security and compliance. We'll discuss priority scoring, reachability analysis, and custom integrations. Join us as we examine the potential of Snyk to shift security left, making it an integral part of the development process. This approach can significantly enhance the security posture of applications from the outset, reducing vulnerabilities and ensuring compliance.

#Container Security #SAST #Snyk
Listen 22 min
Unlocking Code Excellence with SonarQube: Scaling SAST and CI/CD Security
DevSecOps CI/CD Cloud Security Platform Engineering
EP AI 2026-06-30

Unlocking Code Excellence with SonarQube: Scaling SAST and CI/CD Security

Discover how SonarQube Enterprise can elevate your code quality and security posture by enforcing Quality Gates, customizing SAST rules, and integrating with popular CI/CD tools. Learn from experts how to leverage SonarQube for comprehensive code analysis and security hotspot triage. This episode dives into the nuances of SonarQube as a code scanner versus dedicated SAST tools and explores best practices for portfolio reporting and integration with GitHub, GitLab, and Azure DevOps.

#DevSecOps #SonarQube #SAST
Listen 24 min
GitOps at Scale with Flux v2: Multi-Cluster Bootstrap and Reconciliations
DevOps
EP 27 2026-06-29

GitOps at Scale with Flux v2: Multi-Cluster Bootstrap and Reconciliations

How to scale GitOps operations to hundreds of Kubernetes clusters using Flux CD bootstrap controllers.

#Cluster Hardening #AWS SQS #cloud native tools
Listen 25 min
Mastering AWS IAM Policies: Attribute-Based Access Control (ABAC) vs RBAC
Cloud Security
EP 28 2026-06-28

Mastering AWS IAM Policies: Attribute-Based Access Control (ABAC) vs RBAC

Designing fine-grained permission boundaries inside AWS workloads using resource tags and attributes.

#Falco #Autoscaling
Listen 24 min
Designing Secure VPC Architectures: Transit Gateways and PrivateLink
Cloud Security
EP 29 2026-06-27

Designing Secure VPC Architectures: Transit Gateways and PrivateLink

Best practices for enterprise cloud networking, traffic segregation, and secure service ingestion.

#IaC
Listen 25 min
Zero-Trust Service Meshes: Hardening Workload Identities with Linkerd
Platform Engineering
EP 30 2026-06-26

Zero-Trust Service Meshes: Hardening Workload Identities with Linkerd

Enforcing secure process identities and automatic mTLS encryption for microservices.

#Traffic Management #Spot Strategy
Listen 24 min