@bridgecrewio shared a post, 1 month ago, in BridgeCrew

It’s Not All Bad! Using Cloud Drift for Teachable Moments

Stack Overflow’s 2021 Developer Survey found that 54% of developers use AWS, yet only 7% use Terraform.

drift-detection-learnings.png
@bridgecrewio shared a post, 1 month ago

Advanced Terraform Security: Pro Tips for Secure Infrastructure as Code

Terraform

In simpler times, IT operations had the responsibility to configure and deploy new infrastructure, mostly via command line interface (CLI) and scripts. Today, even those with the most advanced command line prowess cannot keep up with the scalability and agility demands of companies building and deploying infrastructure in the cloud.

advanced_terraform_security.png
@bridgecrewio shared a post, 1 month, 1 week ago, in BridgeCrew

5 Infrastructure Security Tasks Your Developers Can Automate

Speed is the name of the game for developers. That’s why security isn’t always a top priority for them—it’s seen as a slowdown or blocker for developers whose performance depends on their velocity.

5_tasks_to_automate.jpeg
@bridgecrewio shared a post, 1 month, 1 week ago, in BridgeCrew

5 Common Kubernetes Misconfigs and How to Fix Them

Kubernetes is a powerful tool with enough settings to deploy a performant, scalable, and reliable cloud native application. There are also enough settings so that it’s hard to keep all security and compliance best practices straight.

kubernetes-misconfigs.png
@pbrissaud shared a post, 1 month, 2 weeks ago
DevOps, @onewealthplace

Deploy a GCloud instance with Gitlab CI

Google Cloud PlatformAnsibleTerraformGitLab

How to deploy a CGE Instance with Gitlab CI using Terraform and Ansible

0*M-S58GAowG62GImx.jpg
@bridgecrewio shared a post, 2 months, 3 weeks ago, in BridgeCrew

Addressing Security Throughout the Infrastructure DevOps Lifecycle

checkovVisual Studio Code

No, this isn’t another post about the Secure Development Lifecycle. This is a practical post on why and how to address cloud security at each step of the infrastructure development lifecycle, from infrastructure as code in your IDE to running cloud resources.

addressing-security-1.png
@bridgecrewio shared a post, 2 months, 3 weeks ago, in BridgeCrew

Applying Kubernetes security best practices to Helm charts

DockerHelmPostgreSQLKubernetes - The Easier Waycheckov

Helm charts are an easy way to package, version and deploy applications on Kubernetes. They can be used to deploy application services or even Kubernetes components and tools.

helm-security-research.png
@bridgecrewio shared a post, 2 months, 3 weeks ago, in BridgeCrew

Cloud Drift Detection: How to Resolve Out-of-State Changes

Cloud configurations change. All the time. It’s futile to imagine web app development without a constant stream of configuration changes in order to adopt new technologies, release new features, and support new business requirements.

cloud-drift-2.png
@bridgecrewio shared a post, 3 months, 1 week ago, in BridgeCrew

Terraform Security 101: Best Practices for Secure Infrastructure as Code

KubernetesTerraformcheckov

Deploying and managing cloud resources is faster and easier than ever, and we have infrastructure as code (IaC) to thank for it. With IaC, tedious manual configurations and one-off scripts are things of the past. Instead, you manage infrastructure with code in much the same way you would applications and services. This infrastructure can be anything from servers and databases to networks, Kubernetes clusters, and entire application stacks.

101-post.png