Anasanasmansuri.hashnode.dev·Oct 19, 2024Comparing Sidecar and Init Containers in Production: Understanding Trivy and KyvernoImage Security : Trivy The image has several layer and sometimes in one of these layers there CVE(Common Vulnarability and Exposers), in simple words a kind of backdoor is there so chances of hacking is greater. So we want to make sure that the ima...Discussheml
Reza RashidiforDevSecOpsGuidesrezaduty-1685945445294.hashnode.dev·Jul 15, 2024Attacking PolicyOpen Policy Agent (OPA) is a versatile tool used to enforce policies and ensure compliance within a DevSecOps environment. However, security misconfigurations in OPA can lead to significant vulnerabilities. One common issue is overly permissive polic...Discuss·1 like·233 readsPolicy
NearformforNearformnearform.hashnode.dev·Jun 21, 2024OPA policy-based testing of Helm chartsBy Iheanyi Onwubiko Enhancing Helm chart security and policy compliance with OPA Managing Kubernetes applications correctly is as crucial as their development. Helm charts are a pivotal tool for deploying and managing these applications efficiently. ...Discuss·1 likeiwritecode
SIDDHANT VIJAY SINGHforInfrasity Bloginfrasityblog.hashnode.dev·Oct 5, 2023Simplified Infrastructure Audit: Terrateam with OPA PoliciesIn the realm of Terraform, creating infrastructure was a breeze, but challenges loomed. How could teams ensure rule adherence? Were the right tags and naming conventions followed? Many organizations grappled with these questions. Terraform, though ef...Discuss·48 readsTerrateam
Sidharthan Chandrasekaran KamarajforThe Bug Shotsthebugshots.dev·Sep 6, 2023Safeguard Your REST APIs Using Open Policy Agent - OPAAuthorization is a crucial concern for most applications. As app logic grows, permission checks often get scattered across handlers, middlewares, and external services. This leads to duplicated logic and inconsistencies. Open Policy Agent (OPA) provi...Discuss·139 readsGolangopa