Let Your Software Supply Chain Ride with Kubernetes CI/CD

Monday, October 28, 2019 - 2:45 pm3:30 pm

Ricardo Aravena, Rakuten


In the last two years, we have seen Kubernetes GitOps become more universal in many teams helping them enhance their software pipelines. Yet, there are still some gaps when it comes to enhancing security and gluing all the pieces together.

We will survey some of the more popular GitOps open-source tools such as Draft and Flux along with a security review for real-world production environments. Which one could be more vulnerable and how would you harden them? What about building and verifying container images with open-source projects like Kaniko, and in-toto? How can you fully put the pieces together with Spinnaker or Tekton?

By the end of the session, the audience will have a good understanding of the current state of the GitOps ecosystem in the open-source world and how to leverage several tools to enhance, secure, increase agility and create their container software factory in production.

Ricardo Aravena, Rakuten

Ricardo currently works at Rakuten as an Infrastructure Manager, automating everything in containers using open source and lately contributing to the Kata Containers project. He has been working in tech for more than 20 years and comes from a diverse professional background, having been in different roles at large companies such as Cisco and VMware as well as startups such as Coupa, Hytrust, Exablox, and SnapLogic. Most recently he was at Branch Metrics where he spent 2 years working on automating their cloud infrastructure to handle millions of requests and petabytes of data on a daily basis.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

@conference {240800,
author = {Ricardo Aravena},
title = {Let Your Software Supply Chain Ride with Kubernetes {CI/CD}},
year = {2019},
address = {Portland, OR},
publisher = {USENIX Association},
month = oct

Presentation Video