Episode 31
Container Security with Josh Duffney
with Josh Duffney, Security Expert
Josh walks us through the powerful combination of open-source CNCF projects that address different aspects of container supply chain security. Learn how Trivy scans for vulnerabilities, Copasetic performs targeted patching when base image updates are available.
Josh walks us through the powerful combination of open-source CNCF projects that address different aspects of container supply chain security. Learn how Trivy scans for vulnerabilities, Copasetic performs targeted patching when base image updates are available.
Episode Highlights
- Container supply chain security fundamentals
- Trivy vulnerability scanning capabilities
- Copasetic for targeted patching of base images
- CNCF security project ecosystem
Josh demonstrates how these tools work together to create a comprehensive container security strategy.
Key Takeaways
- Vulnerability scanning - Using Trivy for comprehensive container security
- Targeted patching - Copasetic for efficient base image updates
- Supply chain security - End-to-end container security practices
- CNCF ecosystem - Leveraging open-source security tools
Resources Mentioned
- Trivy vulnerability scanner
- Copasetic patching tool
- CNCF security landscape
- Josh’s container security best practices