March 31, 2022
Adding Policy as Code to GitOps Pipelines
Previously we introduced the benefits of policy as code, and how it works. In this blog, we continue where we left off and dive deeper into how policy as code can be embedded into GitOps pipelines.
March 29, 2022
Trusted Delivery with GitOps and Policy as Code
Trusted Delivery - policy as code in GitOps pipelines - can boost developer velocity, proactively prevent cloud misconfigurations, and accelerate software delivery. Learn more about what Trusted Delivery is in our latest whitepaper, and how you can get started.
July 22, 2021
The Art of Modern Ops: Authorize better with OPA - security policy as code
The Art of Modern Ops is a regular podcast on modernizing cloud infrastructure from Cornelia Davis, Weaveworks CTO and author of the book Cloud Native Patterns. In the latest episode, Cornelia interviews Gareth Rushgrove, VP of Product at...
May 18, 2021
How the Department of Defense (DoD) uses GitOps to bake in security
In a recent episode of 'The Art of Modern Ops' (this time in a video format!) WeaveWorks CTO, Cornelia Davis, hosted a very interesting discussion featuring the Department of Defense and how it approaches modern cloud-native operations with GitOps. Nicolas Chaillan, Chief Software Officer of the U.S. Air Force discusses how GitOps enables key operational tasks like change management, disaster recovery, networking changes, and security for tens of thousands of developers.
May 13, 2021
Secure open source foundations: Flux case
Open source projects usually have a large network of dependencies connected to a code base that will eventually build and compile into a package that may, in turn become the dependency of another project. That is why concerns about open source as a potential vector for critical vulnerabilities have always existed despite Linus’ law. Flux was able to reach a CVE count of zero due to its maintainers limiting the amount of dependencies used....
September 09, 2020
Preventing malicious use of Weave Scope
It was reported this week that TeamTNT hackers are using Weave Scope to aid their intrusions. As Weave Scope is an administration tool it has powerful capabilities making it important for any installation to be secured. We’re going to cover both how Scope is used and how you can mitigate this risk by securing it in any Kubernetes installation.
June 20, 2019
Cluster Ready Checklist for Kubernetes
How do you know when you’re ready to run your Kubernetes cluster in production? In this blog series, we define Production Ready checklists for your cluster and applications.
June 13, 2019
Introduction to Kubernetes Security
Weaveworks and Aqua recently held a popular webinar on Kubernetes and Security. Liz Rice of Aqua described how to lock down a cluster and Brice Fernandes of Weaveworks examined how to secure your operations workflows to Kubernetes.
April 02, 2019
Securing Developer Workflows
As modern developers and DevOps teams are embarking on a quest for speed and reliability through automated CICD pipelines for Kubernetes, enterprises still need to ensure security and regulatory compliance.
March 19, 2019
Continuous Security for GitOps
Signup for a webinar with Andrew Martin from ControlPlane and Brice Fernandes from Weaveworks and learn how to secure git for GitOps powered CICD Kubernetes pipelines.
March 05, 2019
New Whitepaper - Hardening Git for GitOps
Download ‘Hardening Git for GitOps’, and learn what the 4 most common threats are, how they can be mitigated and how to secure Git using standard signing techniques and software configuration.
February 26, 2019
Secure GitOps Pipelines for Kubernetes with Snyk and Weaveworks
Join Weaveworks and Snyk in an online webinar to learn why the typical CICD pipeline can be insecure and how by applying a GitOps in combination with Snyk’s automated vulnerability solution can protect you.