Use OpenSCAP to Scan Container Images

In this blog we will see what is OpenSCAP and how it can be used in container image hardening workflow. What is OpenSCAP? OpenSCAP is an open-source framework to enforce security compliance in IT systems. It is based on Security Content Automation Protocol (SCAP) and is designed to help automate the processes of vulnerability assessment, … Read more

Kubernetes App using mTLS Encryption

To implement mutual TLS (mTLS) encryption in a Kubernetes application using Python’s FastAPI without performing TLS termination at the Ingress Controller, you’ll need to configure both the FastAPI server and clients to handle mutual authentication. This involves setting up the server to require a client certificate and the client to present a certificate that the … Read more

Compress docker images as tar packages

In this blog we will see how we can easily compress docker images as tar packages. What is a docker image? A docker images is a lightweight, standalone, and executable package that includes everything required to run a piece of software, including the code, runtime, libraries, and system tools. Docker images allow for consistency across … Read more

journalctl: Your door to Linux logs

In this blog, we will go though various types of logs in Linux operating system and how journalctl tool can be used to explore some of these logs. In Linux operating system, logs are used to capture different types of system events, errors, and activities. These logs provide valuable information for monitoring, troubleshooting, and maintaining … Read more

Lightweight Package Managers – Your Docker Images will love it!

What are package managers? A package manager is a tool in Linux whose primary role is to automate the installing, updating, configuring and removal of software packages. The package manager greatly simplifies the complexities related to the package installation, dependencies resolution, and updates. Here are some key functions of a package manager in Linux: Software … Read more

Package Managers in Linux

A package manager is a tool in Linux whose primary role is to automate the installing, updating, configuring and removal of software packages. The package manager greatly simplifies the complexities related to the package installation, dependencies resolution, and updates. Primary Functions Software Installation: Let users easily install software packages along with their dependencies. users can … Read more

DevOps Monitoring Tools: Kibana and Grafana

Kibana and Grafana are two popular open-source DevOps monitoring tools that are very popular in DevOps. Monitoring tools are integral to successful DevOps practices. Importance of monitoring tools in DevOps Monitoring tools play a crucial role in DevOps practices by providing insights, visibility, and control over the entire software development and deployment lifecycle. They help … Read more

Argo Workflows: An Introduction and Web UI Setup

In this blog, we will explore the features, benefits, and use cases of Argo Workflows, which can accelerate and streamline your application deployments, data pipelines, machine learning workflows, and more. What is Argo Workflows? Argo Workflows is an open-source container-native workflow engine for orchestrating parallel jobs on Kubernetes. It is deployed as Kubernetes Custom Resource … Read more

Open Source Image Vulnerability Scanners

What is an Image Vulnerability Scanner? Image Vulnerability scanners are tools used to identify and assess any security vulnerabilities in container images. These scanners can help to scan and analyze container images for known security weaknesses, misconfigurations, or outdated software versions that could potentially be exploited by attackers. These scanners typically analyze the container image … Read more

Use Ingress to Expose Applications: Simplify and Secure Kubernetes Service

In this blog post, we will explore how we can take advantage of Ingress to expose applications, streamline traffic management, and enhance application security. Introduction In Kubernetes, when we deploy applications and create corresponding services, by default these (Cluster IP services) are only accessible from within the cluster. To expose these services outside the cluster … Read more