DevOps World | Jenkins World 2018: Adding Container Image Security Scanning...

Adding Container Image Security Scanning and Best-practices Enforcement to Jenkins with Anchore

Feedback form is now closed.

As container build techniques continue to extend into more software delivery flows, the variance in software being produced, in the form of container images, has increased dramatically. We present the Anchore security and best-practice enforcement system, and show how the open-source Anchore Engine can be quickly integrated into Jenkins
flows. Anchore's policy-based scanning engine is customizable, including checks for software vulnerabilities, accidental presence of secrets/keys, Dockerfile checks, and more. In this talk, we provide an overview of Anchore's capabilities, & review examples of how Anchore security and best-practice scanning can be added quickly to existing
Jenkins builds.

Speakers

Daniel Nurmi

Anchore

Daniel Nurmi has worked primarily in designing secure, production-grade, large-scale distributed and high performance computing systems, cloud infrastructure, and applications for enterprise deployments. He most recently held the position of Distinguished Technologist at HP Enterprise... Read More →

Monday September 17, 2018 6:30pm - 6:45pm
Partner Theater

DevOps, 15 Min Solution Session

Audience Proficient