Back To Schedule
Monday, March 30 • 10:05 - 10:35
Lessons from the Trenches of Container Scanning in CI/CD - Zach Hill, Anchore Inc.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Container scanning in CI/CD pipelines not new, but getting real value from the scan is still really hard. Interpreting results and understanding CVEs and vulnerability sources is not easy and takes time. With containers coming from many teams and sources the variance in quality and types of problems can be huge. As a result, scanning may be relegated to a checkbox item. Or even worse, it becomes a source of noise and distraction without any
real security benefits. In building an open-source container scanner and working with users in enterprise and government teams to add scanning to their pipelines, Zach has worked through a lot of the challenges that come with container scanning. He will share these insights and pitfalls so you can get confidence and better deployments, not just a long list of issues on the backlog. You'll come away with an understanding of what to watch for, how to avoid common mistakes, and how to use your CD pipelines to improve the security of your deployments.


Zach Hill

Chief Architect, Anchore Inc.
As the first engineering hire at Anchore and now Chief Architect, Zach is responsible for the technical direction of Anchore and is also directly involved in the development, helm charts for deploying systems, kubernetes integrations such as admission controllers, registry integrations... Read More →

Monday March 30, 2020 10:05 - 10:35
RAI Amsterdam