Fede is a college student and cloud-native integrations engineer at Sysdig, sitting between the container infrastructure and programming worlds, he uses Go, Python and C++ to integrate the neverending stream of new awesome DevOps / Container technologies, always willing to learn new things in this hectic technology space.
OPA ate my image scanning
Image scanning is a cornerstone to keep your Kubernetes cluster secured. You don't want to open the door to attacks by deploying a pod from an image with vulnerabilities, or that doesn't follow your policies.
This talk will show attendees how to use Open Policy Agent as an Admission Controller and integrated with image scanning from Anchore. With this you can determine if an image can be scheduled into Kubernetes, based on the scanning results.