Why Should Developers Care About Container Security? - Mirantis Labs Tech Talks

Explore the critical importance of container security in this 54-minute tech talk from Mirantis Labs. Delve into the reasons behind focusing on Dockerfile image users, read-only filesystems, image sizes, and CPU/RAM limits in relation to application security. Witness live demonstrations showcasing the potential consequences of neglecting these aspects. Learn about the evolution from DevOps to DevSecOps, understand the DevOps feedback loop, and discover best practices and tools for implementing defense in depth. Gain valuable insights through live Q&A sessions addressing topics such as Spring vulnerability resolution, runtime container scanning, and tools for assessing Kubernetes cluster security compliance. Equip yourself with essential knowledge and resources to proactively secure your container development practices.

- Introduction & agenda
- DevOps vs DevSecOps: DevOps
- DevOps vs DevSecOps: DevSecOps
- Live Demo: security implications when running containers
- Live Q&A: has the recent Spring vulnerability been resolved?
- The DevOps feedback loop
- Defense in depth: best practices & tooling to consider
- Review: key takeaways from today's talk
- Helpful resources discussed today
- A quick look ahead to next week's Tech Talk
- Live Q&A: is there a solution to scan Docker containers in Runtime?
- Live Q&A: what tools do you recommend to see if your K8s clusters meet security requirements?
- Outro