BoxBoat Blog

Service updates, customer stories, and tips and tricks for effective DevOps

x ?

Get Hands-On Experience with BoxBoat's Cloud Native Academy

Category: Kubernetes

The Grype Admission Controller

by Josh Knarr | Wednesday, Mar 16, 2022 | Admission Controllers Kubernetes Security

Intro Today I want to write about the grype admission controller. I wrote it. I am proud of it. I think it solves a really uncomfortable problem in DevSecOps. Security has a big problem: On one hand, security teams are responsible for making everything secure. That's their job. But on the other hand, they need to somehow do that job while not being directly involved in the production of the code.

Self-Hosted Azure DevOps Pipeline Agents in Kubernetes

featured.png

by Daniel Morrison | Thursday, Oct 21, 2021 | Azure Kubernetes Open-Source

There are many pros to hosting your own Azure DevOps(ADO) Pipeline Agents including: cost savings, increased control, and a cloud-native design. However, self-hosting anything can be tricky, and maintenance of agents can be tiresome. For these reasons a short-lived, ephemeral agent is ideal. One powerful way to achieve this is by running your agents on Kubernetes. Let’s dive into setting up our own agent's Docker image and self-hosted agent pool.

Kubeless FastAPI Runtime

featured.png

by John Hooks | Tuesday, Sep 28, 2021 | Kubernetes Serverless

Recently, one of our customers required a serverless offering for Kubernetes. After looking through multiple solutions, we settled on Kubeless. It gave us a good mix of compliance by allowing us to select only certain runtimes, but also the flexibility to create our own runtimes. Overview By default, Kubeless uses Bottle with Python as its web framework. This is great when simplicity is needed. You can just pass in a request and function context getting whatever you need from that request item.

Announcing the AKS Health Check

featured.jpg

by Natalie ReinfordFacundo Gauna | Wednesday, Aug 4, 2021 | Azure Kubernetes Open-Source

As we continue to work with more clients and different types of organizations, we continue to see a trend - the lack of time. Organizations are often racing to get a project “live” or struggle to keep up with the demand of infrastructure deployments across the enterprise. The same is true for Kubernetes. And with this rush, organizations don't have the time to become familiar with the vast amount of documentation and recommended best practices.

Supply Chain Security By Verification - Mitigating Supply Chain Attacks

featured.png

by Cole Kennedy | Tuesday, May 4, 2021 | Security Kubernetes

At BoxBoat, we have been helping high compliance and assurance industries adopt DevSecOps practices for the last five years. In-band compliance, security checks, and scans form the basis of a secure software delivery pipeline. However, recent supply chain attacks such as SUNBURST have highlighted the need for a new approach to supply chain security. At BoxBoat we have been working with the Cloud Native Computing Foundation sig-security on guidance on implementing an evidence based trust system for secure software delivery that mitigates against key and root credential loss.

  Page 1 of 6   Older Posts