Hands-on Introduction to GitGat

71 min watch

Meet the Cast

David Flanagan HOST

David Flanagan

@rawkode

Weekly Cloud Native insights

Stay ahead in cloud native

Tutorials, deep dives, and curated events—no fluff.

SCM (Source Control Management) security is of high importance as it serves as an entry point to the whole CI/CD pipeline. This repository contains policies that verify SCM (currently GitHub's) organization/repositories/user accounts security. The policies are evaluated using Open Policy Agent (OPA).

There are different sets of policies depending on which account is being evaluated. Most policies are only relevant for organization owners. See the rulesets section bellow.

The policies are evaluated against a certain state. When executed for the first time, the state is empty. The returned data should be reviewed, and the security posture should be manually evaluated (with recommendations from each module). If the state is approved, it should be added to the input data, so that the next evaluation of policies tracks the changes of the state. More information about the state configurable for each module is available in each module's corresponding section.

Related Videos

Kubernetes Disaster Recovery
19:17

Kubernetes Disaster Recovery

[object Object][object Object]
Flatcar Linux: A Modern OS for the Always-On Infrastructure
51:20

Flatcar Linux: A Modern OS for the Always-On Infrastructure

Platform Engineering: Asking "Why"? with Evelyn Osman
43:56

Platform Engineering: Asking "Why"? with Evelyn Osman

 Today we had some long conversations about Arc Bash and the future of scripting as well as platforms and the rise and fall of Kubernetes.

Hands-on with Headlamp: The Kubernetes UI
59:07

Hands-on with Headlamp: The Kubernetes UI

Join us as we explore Headlamp — an extensible, user-friendly Kubernetes UI. We’ll walk through installing, configuring, customizing, and using it in real time.