In this demonstration, I’ve configured OPA policy at the K8s cluster, allowing only the Spinnaker service account to create a deployment via the kube-api server. Additionally, I’ve defined a policy within the pipeline via Armory Policy Engine, requiring all images be specified with a tag other than ‘latest’. This demonstrates the centralization and consolidation of […]
Armory Policy Engine provides support for automating policy compliance with Spinnaker. Policy Engine Plugin is the latest version of Policy Engine and adds support for both advanced role-based access control (RBAC) use-cases and open source Spinnaker. The release of Policy Engine Plugin comes with new documentation, including a library of example policies from across Armory’s […]
Consistent Policy Enforcement What if the industry has been thinking about continuous delivery the wrong way? What if continuous delivery is not an extension of continuous integration, instead it is the concept of automating the rules that have been defined by your change review boards and exposing them to application teams early in the development […]
This blog post was originally posted on: https://cd.foundation/blog/2020/07/07/an-inside-look-at-the-innovation-happening-in-oss-spinnakers-cve-process/ Contributed by Rin Oliver & Beth Fuller CDF Newsletter – July 2020 Article Subscribe to the Newsletter “I once went to a security talk, and it was such a mind shift for me when they explained that the only way to guarantee a system is 100% secure, […]
