Linking pages
- GitHub - analysis-tools-dev/static-analysis: ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality. https://github.com/analysis-tools-dev/static-analysis 112 comments
- Terraform vs Pulumi vs CloudFormation: Best Choice for 2022 | Multy https://docs.multy.dev/blog/iac-comparison 75 comments
- Container security best practices: Comprehensive guide – Sysdig https://sysdig.com/blog/container-security-best-practices/ 68 comments
- GitHub - analysis-tools-dev/static-analysis: ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality. https://github.com/mre/awesome-static-analysis#c 21 comments
- Docker optimization guide: the 12 best tips to optimize Docker image security https://www.augmentedmind.de/2022/02/20/optimize-docker-image-security/ 15 comments
- GitHub - mikeroyal/Azure-Guide: Microsoft Azure Guide. Learn all about Microsoft Azure Tools, Services, and Certifications. https://github.com/mikeroyal/Azure-Guide 7 comments
- GitHub - JamesWoolfenden/pike: Pike is a tool for determining the permissions or policy required for IAC code https://github.com/JamesWoolfenden/pike 2 comments
- Introducing Shisho Cloud: Autofixes for Your Infrastructure as Code are Just a Click Away | Shisho Cloud | Shisho Cloud https://shisho.dev/posts/introducing-shisho-cloud 1 comment
- GitHub - mikeroyal/AWS-Guide: Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications. https://github.com/mikeroyal/AWS-Guide 1 comment
- Journey Of A Microservice Application In The Kubernetes World | by Luc Juggery | Oct, 2022 | ITNEXT https://medium.com/@lucjuggery/journey-of-a-microservice-application-in-the-kubernetes-world-6abd625c60fe?sk=26772926742a23c65ae21e98cb5f10e3 0 comments
- Enforcing best practice on self-serve infrastructure with Terraform, Atlantis and Policy As Code | by Dan Williams | loveholidays tech https://tech.loveholidays.com/enforcing-best-practice-on-self-serve-infrastructure-with-terraform-atlantis-and-policy-as-code-911f4f8c3e00 0 comments
- What You Need To Know To Debug A Preempted Pod On Kubernetes | CodeX https://medium.com/codex/what-you-need-to-know-to-debug-a-preempted-pod-on-kubernetes-1c956eec3f35 0 comments
- Palo Alto Networks acquired DevOps security startup Bridgecrew for $156M | TechCrunch https://techcrunch.com/2021/02/16/sources-palo-alto-networks-acquired-devops-security-startup-bridgecrew-for-around-200m/ 0 comments
- Introducing TerraGoat, a vulnerable-by-design Terraform training tool | Bridgecrew https://medium.com/bridgecrew/terragoat-vulnerable-by-design-terraform-training-by-bridgecrew-524b50728887 0 comments
- GitHub - fabacab/awesome-cybersecurity-blueteam: 🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams. https://github.com/meitar/awesome-cybersecurity-blueteam 0 comments
- Learning by auditing Kubernetes manifests | by Nicolas Fränkel | ITNEXT https://nfrankel.medium.com/learning-auditing-kubernetes-manifests-2a82db24f8a7?sk=521fb2e79e99c52c532c9d819ccbafcf&source=friends_link 0 comments
- GitHub - shospodarets/awesome-platform-engineering: 😎 Awesome list of platform solutions, tools, practices and resources for Platform Engineering https://github.com/shospodarets/awesome-platform-engineering 0 comments
- Mitigating RBAC-Based Privilege Escalation in Popular Kubernetes Platforms https://unit42.paloaltonetworks.com/kubernetes-privilege-escalation/ 0 comments
- ARMO shows how ChatGPT can help protect Kubernetes | VentureBeat https://venturebeat.com/security/armo-shows-how-chatgpt-can-help-protect-kubernetes/ 0 comments
- Using OIDC to secure your CI/CD Pipelines - No more long lived access keys! · jxel.dev https://jxel.dev/posts/using-oidc-to-secure-your-ci/cd-pipelines-no-more-long-lived-access-keys/ 0 comments
Would you like to stay up to date with DevOps? Checkout DevOps
Weekly.