Bridgecrew, a Palo Alto Networks company, is focused on bringing security for infrastructure code right into the developer pipeline with great ease. “By presenting security information directly in pull requests, surfacing issues directly in VS code, when you first start writing that first line of code, it really is about trying to bring security into that automated lifecycle,” said Matt Johnson, Developer Advocate Lead, Bridgecrew.
The company recently released a report on how secure reusable components of Kubernetes by default are. They scanned thousands of open-source Helm charts available for reuse on Artifact Hub against common Kubernetes security and compliance policies via Checkov.
In this edition of Let’s Talk, we sat down with Johnson to go deeper into their findings and report and also understand new patterns and trends in the cloud-native security space.