In this tutorial, we will show how to integrate GitGuardian Shield to run on one of the most famous CI tools: Jenkins in K8s. — GitGuardian shield (thereafter: ggshield) is a CLI application that runs in your local environment or in a CI environment to help you detect more than 300 types of secrets, as well as other potential security vulnerabilities or policy breaks. TL; DR: basically, it uses our public API through py-gitguardian to…

Before you quickly glance over the title and think “Oh god, yet another tutorial on how to give proper names to variables, how to use… — Before you quickly glance over the title and think “Oh god, yet another tutorial on how to give proper names to variables, how to use modules, how to manage states; nothing I haven’t already know” then close the tab right away, let me assure you this: this article is none…

A completely different “best practice” article, unlike any you’ve seen before. You have my words. Your IaC world is going to be changed. — Before you quickly glance over the title and think “Oh god, yet another tutorial on how to give proper names to variables, how to use modules, how to manage states; nothing I haven’t already know” then close the tab right away, let me assure you this: this article is none…

This isn’t yet another meaningless review of the latest kid on the DevOps block. It just isn’t. Follow me, and you won’t regret it. —

The 3rd and final part of the K8s hardening tutorial series explains authentication, authorization and auditing in depth. — In the first two parts of this tutorial, we discussed: How to enhance your Pod security in your Kubernetes cluster How to harden your Kubernetes network security As the third and final part of this tutorial we are going over the authentication, authorization, logging, and auditing of a Kubernetes cluster…