Eps 713: Kubernetes and DevSecOps
— The too lazy to register an account podcast
Let's address the two most common security risks for containerization: the container images themselves and the container registries.
Digitally sign your container images and set your orchestration platform, e.g., Azure Kubernetes Service (AKS), to only allow validated images.
Enable multi-factor authentication on all accounts that will be accessing container registries, AKS clusters, or Azure DevOps pipelines.
Host
Madison Walker