Hands-on with Aqua Container Security

Hands-on with Aqua Container Security

Shift Left security early into the DevOps pipeline with Jenkins and Aqua.

Aqua Container Security

With the growing adoption of Containers comes a proportional concern for security. The Aqua Microscanner is an open-sourced tool that can check container images for vulnerabilities.

Led by our very own Melvin Cheng, our latest DevOps Playground in Singapore was presented with our partners Aqua Security. We went through how to set up a simple Jenkins job to build a docker image and scan it for vulnerabilities using the Aqua Microscanner plugin. We’ll then address the vulnerabilities before re-scanning the image.

Aqua Container Security

The steps needed to complete this Playground can be found on our Github repo:

https://github.com/DevOpsPlayground/Hands-on-with-Aqua-Container-Security-Platform

The Playground recording is also available, just head over to the ECS Digital YouTube channel using the link below:

*****

Interested in attending our next DevOps Playground in Singapore? Follow us on Meetup (https://www.meetup.com/DevOps-Playground-Singapore/to receive a notification about the next event.

Check out the meetups we have at our other global locations:

You can also find all the information and resources you need about DevOps Playground sessions, upcoming events and past events on our website: https://devopsplayground.co.uk

 

Melvin ChengHands-on with Aqua Container Security
read more
DevOps Playground – Exploring Metrics with Prometheus

DevOps Playground – Exploring Metrics with Prometheus

Singapore’s last DevOps Playground was exploring metrics gathering with Prometheus. The event was hosted at the Lifelong Learning Institute (LLI).

The DevOps Playground community in Singapore is growing and this was our biggest attendance in Singapore to date! Thank you to everyone who supported us.

In this playground, we provide you with a better understanding of the monitoring capabilities of Prometheus and how those statuses can be easily displayed in a Grafana dashboard.

Follow the video above and you’ll begin to see how easy it is to set up a new Prometheus Server and use it to gather metrics from several applications.

We walk you through installing and configuring a Prometheus instance to monitor the following:

  1. Server hardware and kernel related metrics
  2. Instrumenting a Go application

The steps needed to complete this playground can be found on our Github repo:

https://github.com/DevOpsPlayground/Hands-on-with-Prometheus-2

So consider the services you are responsible for maintaining and follow the video above to see if Prometheus can help you improve the visibility of the health of those services.

Furthermore, we would advise users who are seriously looking into Prometheus for production to take into consideration the following during their planning phase:

  1. Storage Capability – Understand the size and frequency of metrics to be collected and stored.
  2. Federation – Scaling Prometheus to allow a Prometheus server to scrape selected time series from another Prometheus server.

****

Interested in attending our next DevOps Playground in Singapore? Follow us on Meetup to receive a notification about the next event.

Check out our other DevOps Playground on Meetup too:

You can also find all the information and resources you need about DevOps Playground sessions, upcoming events and past events on our website: https://devopsplayground.co.uk

Melvin ChengDevOps Playground – Exploring Metrics with Prometheus
read more