Main Menu
What we do
Sponsors
Jobs
Search
Register
Featured Channels
#atmos
#aws
#helmfile
#kubernetes
#office-hours
#refarch
#terraform
Channels
#ai
#airship
#announcements
#ansible
#argocd
#atlantis
#atmos
#atmos-dev
#aws
#aws-reinvent
#azure
#bash
#bastion
#battlestation
#bigdata
#books
#brightideas
#build-harness
#chatops
#cloudposse
#cloudsmith
#codefresh
#community-projects
#compliance
#digitalocean
#docker
#docs
#dynolocker
#events
#forum
#gcp
#general
#geodesic
#git
#github
#github-actions
#gitops
#govcloud
#helm
#helmfile
#help
#heroku
#home-automation
#jobs
#kops
#kubecon
#kubecost
#kubernetes
#lax
#office-hours
#opentofu
#ops
#packages
#packer
#pr-reviews
#productivity
#prometheus
#pulumi
#random
#refarch
#release-engineering
#releases
#security
#spacelift
#spacelift-announcements
#sre
#terraform
#terraform-0_12
#terraform-aws-modules
#terraform-es
#terragrunt
#townhall
#variant
#vault
#windows

#security (2024-11)

Archive: https://archive.sweetops.com/security/

2024-11-26

Ayman

Hi folks, what is everyone doing to get keep their ECR images updated and free of vulns? Looking for new ideas for image pipeline, esp for nervous engineers.

Darren Cunningham

08:42:28 PM

one account for all new builds and a separate account for all PROD images, only promote to prod automatically for clean scans or when manually triggered (to allow for CVE exceptions)

2018
2019
2020
2021
2022
2023
2024