cloud Notes on Open Policy Agent and Docker Security I am starting to work with Open Policy Agent (OPA) for Kubernetes. OPA is largely known for its ability to behave as a powerful Admission Controller for Kubernetes. However, I
container CVE-2019-5736, runC and the Trickle down effect of Bad Advice "Docker Containers are supposed to run as root", he said, authoritatively on a call. I started to doubt myself. "How can anything running as root, be a good thing?" I
container security Stories of My Experiments with "Distroless" Containers If you're like me, you're probably using Containers to deploy and run applications. Containers are incredibly convenient to package and run your applications, consistently, with all the necessary dependencies. However,
