The Art of Modern Ops: Authorize better with OPA - security policy as code

The Art of Modern Ops is a regular podcast on modernizing cloud infrastructure from Cornelia Davis, Weaveworks CTO and author of the book Cloud Native Patterns. In the latest episode, Cornelia interviews Gareth Rushgrove, VP of Product at...

How the Department of Defense (DoD) uses GitOps to bake in security

In a recent episode of 'The Art of Modern Ops' (this time in a video format!) WeaveWorks CTO, Cornelia Davis, hosted a very interesting discussion featuring the Department of Defense and how it approaches modern cloud-native operations with GitOps. Nicolas Chaillan, Chief Software Officer of the U.S. Air Force discusses how GitOps enables key operational tasks like change management, disaster recovery, networking changes, and security for tens of thousands of developers.

Secure open source foundations: Flux case

Open source projects usually have a large network of dependencies connected to a code base that will eventually build and compile into a package that may, in turn become the dependency of another project. That is why concerns about open source as a potential vector for critical vulnerabilities have always existed despite Linus’ law. Flux was able to reach a CVE count of zero due to its maintainers limiting the amount of dependencies used....

Preventing malicious use of Weave Scope

It was reported this week that TeamTNT hackers are using Weave Scope to aid their intrusions. As Weave Scope is an administration tool it has powerful capabilities making it important for any installation to be secured. We’re going to cover both how Scope is used and how you can mitigate this risk by securing it in any Kubernetes installation.

Cluster Ready Checklist for Kubernetes

How do you know when you’re ready to run your Kubernetes cluster in production? In this blog series, we define Production Ready checklists for your cluster and applications.

Introduction to Kubernetes Security

Weaveworks and Aqua recently held a popular webinar on Kubernetes and Security. Liz Rice of Aqua described how to lock down a cluster and Brice Fernandes of Weaveworks examined how to secure your operations workflows to Kubernetes.

Securing Developer Workflows

As modern developers and DevOps teams are embarking on a quest for speed and reliability through automated CICD pipelines for Kubernetes, enterprises still need to ensure security and regulatory compliance.

Continuous Security for GitOps

Signup for a webinar with Andrew Martin from ControlPlane and Brice Fernandes from Weaveworks and learn how to secure git for GitOps powered CICD Kubernetes pipelines.

New Whitepaper - Hardening Git for GitOps

Download ‘Hardening Git for GitOps’, and learn what the 4 most common threats are, how they can be mitigated and how to secure Git using standard signing techniques and software configuration.

Secure GitOps Pipelines for Kubernetes with Snyk and Weaveworks

Join Weaveworks and Snyk in an online webinar to learn why the typical CICD pipeline can be insecure and how by applying a GitOps in combination with Snyk’s automated vulnerability solution can protect you.