Name: Birds of a Feather: What Should a Container Build Manifest Look Like? - Nisha Kumar, VMware
Start: 2018-12-11T10:50:00-0800
End: 2018-12-11T11:25:00-0800

Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map

Back To Schedule

Birds of a Feather: What Should a Container Build Manifest Look Like? - Nisha Kumar, VMware

Feedback form is now closed.

We create containers by reusing several pieces of software from disparate locations, internal and external to our organization. We then rely on the providers (trusted or not) of the pieces to publish the software component list, or we run vulnerability and compliance scan tools against the fully built containers before pushing it to an internal registry. These methods are more fail safes than applying software delivery best practices, i.e., start from a well defined Bill of Materials (BoM).

Can we build a container from a well defined software component manifest? What would that manifest look like? This BoF is to discuss what we need in order to build a better container delivery pipeline that adheres to software delivery best practices. To kick us off, I will present a survey on currently used tools and practices.

Speakers

Nisha Kumar

Security Engineer, Oracle

Nisha is a Security Engineer at Oracle. She has been a DevOps engineer for embedded systems and a Radio Frequency Engineer in semiconductor manufacturing. She has been involved in Open Source for more than 15 years. You can follow her work on Twitter at @_ctlfsh

KubeCon 2018 NA container manifests pptx

Tuesday December 11, 2018 10:50am - 11:25am PST
606-609

CI/CD, Birds of a Feather

Skill Level Intermediate
Link to Session Recording https://youtu.be/WY3s_cG9ia8

KubeCon + CloudNativeCon North America 2018

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Nisha Kumar