YoVDO

Automating Configuration and Permissions Testing for GitOps with OPA Conftest

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

GitOps Courses Kubernetes Courses Continuous Integration Courses Automated testing Courses Configuration Management Courses Security Policies Courses Open Policy Agent Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore how The New York Times implemented automated configuration and permissions testing for GitOps using OPA Conftest in this conference talk. Learn about the challenges of managing multi-tenant deployments securely and how the CICD team developed a self-service platform that allows developers to deploy with autonomy. Discover the benefits of using OPA conftest for policy testing against structured configuration at the PR level, enabling a "trust, but verify" approach to deployment. Gain insights into policy set-up, best practices, and implementation within a GitOps mindset. Follow the speakers as they discuss the journey from top-down checks in Kubernetes and ArgoCD to a more comprehensive security approach that safeguards systems while empowering feature developers.

Syllabus

Introduction
Agenda
Background
Why the IDP
Feedback
Demo
Exceptions
Wrapup
Manifesting
Conclusion


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Secure Networked System with Firewall and IDS
University of Colorado System via Coursera Introduction to Cyber Security
Uttarakhand Open University, Haldwani via Swayam Preparing for the Google Cloud Professional Data Engineer Exam 日本語版
Google Cloud via Coursera Jump Start: Maestro Hyperscale Network Security
Checkpoint via edX Information Security - Introduction to Information Security
New York University (NYU) via edX