Attending this event?
In-person + Virtual
November 6-9
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central Standard Time (UTC -6). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Monday, November 6 • 5:30pm - 5:35pm
⚡ Lightning Talk: A Secure Software Supply Chain for Open Policy Agency (OPA) Policies - Omri Gazitt, Aserto

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Open Policy Agent (OPA) is gaining widespread acceptance as a mature decision engine for enforcing policies in a variety of domains, including Kubernetes admission control (Gatekeeper), configuration file policies (Conftest), and application / API authorization (Topaz). Indeed, OPA policies are becoming an integral part of the cloud-native software supply chain. Security and operations teams have tools for packaging and signing application artifacts, and they need the same capabilities for OPA policies. This lighting talk will describe how to build, tag, and sign OPA policies as OCI containers using the policy CLI. Policy CLI is an open source tool that is part of Open Policy Containers (OPCR), a CNCF sandbox project. Policy CLI can be used to pull and push OPA policies OCI-compliant registries, such as GHCR, Docker, or AWS Container Registry. And OPA can now natively pull policy bundles from OCI artifact registries.

avatar for Omri Gazitt

Omri Gazitt

Co-founder & CEO, Aserto
Omri is the co-founder/CEO of Aserto.com, an authorization startup, and his 3rd entrepreneurial venture. He spent the majority of his 30-year career working on developer & infrastructure tech, most recently as the CPO of Puppet. Previously he was the VP & GM of HP's Cloud Native Platform... Read More →

Monday November 6, 2023 5:30pm - 5:35pm CST
  ⚡ Lightning Talks, SDLC
  • Content Experience Level Any
Feedback form isn't open yet.