We can’t wait to be in Chicago for KubeCon NA 2023. We’ll be at Booth Q12 on November 7-9, where we’ll be doing product demos, dropping knowledge on all things open source and supply chain security, and hosting a raffle for the chance to win a fantastic Maersk Line Triple-E Lego container ship. Entries can be made at the booth (one per person), and the winner will be announced on Thursday, November 9 at 2:15pm CDT.
For anyone interested in a solution that massively reduces CVE counts to save developer and security teams time and resources, you’ll want to make sure to check out Chainguard Images while you’re at the event. With a 97.6% overall reduction in CVEs, we’re excited to show off how this solution can have a massive impact for organizations and open source projects of all sizes. Chainguardians will be at the booth demoing the product and answering all your burning questions.
If you can’t make it to the booth, there are going to be many opportunities to hear from and interact with Chainguard at scheduled KubeCon talks and after hours evening networking events.
Chainguard Talks
Sunday, November 5
11:05-11:55am CDT
Running Containers with Zero Known Vulnerabilities
Hosted on the 12th floor of the historic Civic Opera House, Chainguard DevRel OSS Engineer Adrian Mouat will go into details about how to dramatically reduce the vulnerability count in your images. He'll talk about the importance of reducing complexity, keeping software up-to-date and why Chainguard built a new Linux distribution called Wolfi to help in this quest. The talk will also delve into the murky world of security advisories to understand why scanners sometimes report false positive vulnerabilities and what can be done about them.
Monday, November 6
11:00am-1:00pm CDT
Secure Your AWS Workloads as you Build with Snyk and Chainguard
In this virtual session, DevRel OSS Engineer Adrian Mouat links up with Snyk and AWS to show viewers how a malicious actor might break into an application, and how they can use Snyk and Chainguard Images to mitigate and remediate those same security vulnerabilities. There will be hands-on opportunities to detect and fix vulnerabilities in containers and source dependencies in Amazon ECR and Amazon EKS workloads during the development phase. And you can learn how to upgrade to recommended, secure base images to fortify your Kubernetes workloads by prioritizing vulnerabilities in container packages used at runtime to eliminate noise.
2:00-5:00pm CST
Day of Security: Security in Session and OSS Security Soiree
Day of Security is a multi-part event at Row 24, bringing together experts and founders from Chainguard, Sysdig, and Tetrate for presentations, workshops, an AMA panel, and a special OSS Security Soiree to build connections. Chainguard Software Engineer Josh Dolitsky will talk about Wolfi, and how it helps create container images that adhere to the highest standards of supply chain security, striving for zero-known vulnerabilities, and fortifying supply chain security. The post-event OSS Security Soiree will be from 7:00-9:00 pm CDT. Save your spot now.
Tuesday, November 7
11:55 am-12:30 pm CDT
What’s Happening with Ingress-Nginx!
Join Chainguard Solution Architect James Strong for a dive into upcoming plans for the Ingress-Nginx 2.0 release, breaking changes, new features, and deprecations. The team will provide updates on plans for gateway API, CVE reduction, and other security updates coming to the controller. There will also be community updates, roadmaps, and other critical information about the project.
3:25-4:00 pm CDT
Avoid an Ill Wind and Catch the Jet Stream - Using Falco to Detect Attackers & Compliance Violations
Falco is a reliable and effective real-time threat detection and compliance violation monitoring project essential for various needs in today’s dynamic environments. Chainguard Staff Engineer Carlos Panato teams up with engineers from Sysdig and Apple to share Falco’s new rules maturity framework; designed to ease the onboarding experience with Falco detections and accompanied by contribution, tuning, and style guides. The team will talk about Falco’s improved performance tailored specifically for an expanding pool of adopters, with greater configurability, innovations with plugins, and more.
3:25-4:00 pm CDT
Wolfi: Intro to the Linux Undistro Helping Build Small, up-to-Date, CVE Free Cloud Images
Led by Chainguard Software Engineer James Rawlings, this session provides an introduction to Wolfi, an innovative community project aimed at reimagining the way we approach Linux distributions for the cloud by removing the unnecessary components used by other distributions. We will delve into how Wolfi fosters the creation of hardened images with minimal attack surfaces, significantly reducing the likelihood of CVE threats. Attendees will gain insights into the architecture, inner workings and tooling of Wolfi, understanding the technologies and strategies it employs to keep software continually up-to-date for users. If you're a developer spending too much time triaging, mitigating, and patching CVEs, a cloud architect seeking to optimize resource usage and security, or a DevOps engineer in search of innovative tools, this Wolfi presentation will provide invaluable insights and practical knowledge that you can apply to your projects and organizations.
Wednesday, November 8
2:30-3:05 pm CDT
Kubeburned Out? How to Get Things Done Efficiently Within the Kubernetes Community
In this talk, Red Hat Senior Software Engineer Sascha Grunert and Chainguard Staff Engineer Carlos Panato will outline how to get things done efficiently within the Kubernetes community. The session will outline how to set the right focus for successful long term contributions, including developing, graduating, and maintaining Kubernetes enhancements. Carlos and Sascha will cover how to avoid being burned out and staying focused on the right topics while increasing the personal impact on the decision making process within the community.
4:30-5:00 pm CDT
Security Showdown: The Overconfident Operator vs. The Nefarious Ne’er Do Well
Chainguard Security Engineer Lewis Denham-Parry and VMWare Staff Technical Advocate Whitney Lee play the characters “Ozzie the Overconfident Operator” and “Nova the Nefarious Ne’er-do-well” to demo cluster security. Topics include taking security beyond the firewall, identity management, container image scanning and signing, creating and implementing policies, runtime security, and secrets management.
Thursday, November 9
2:55-3:30 pm CDT
Real-World Knative: Success Stories from Production Environments
Adolfo García Veytia, Staff OSS Engineer at Chainguard, joins a panel of end users who have harnessed Knative to revolutionize their development processes, scale their microservices efficiently, and create robust, event-driven architectures. The panel will delve into the specific challenges encountered in diverse operational environments, the innovative solutions crafted using Knative, and the valuable lessons gleaned through these experiences.
4:00-4:35 pm CDT
Releasing Kubernetes and Beyond: Flexible and Fast Delivery of Packages
SIG Release is one of the largest Kubernetes Special Interest Groups, responsible for managing and getting Kubernetes releases delivered on time. Join Adolfo García Veytia and SIG Release team for an overview of the ongoing release cycle and the release processes, as well as the latest updates on developments to improve the delivery of Kubernetes releases. The panel will highlight what's expected in the next Kubernetes release, and how attendees can become a part of the Release Team.
After Hours
As usual, there will be karaoke with the Chainguardians! Sponsored by Chainguard, Ambassador Labs, ControlPlane and Honeycomb.io, KubeCon NA’s edition of Kuberoke will take place at Brando’s Speakeasy on Tuesday, November 7 from 9:00 pm-1:00 am. Join the Kuberoke community for karaoke, an open bar, and plenty of snacks. Register now to save your spot.
Chainguard is also partnering with Defense Unicorns and Testifysec to sponsor PartyCon ‘23, a fun-filled evening of arcade games, delicious food, and refreshments. There will be plenty of engaging conversations with leaders in the security industry to be had. This year’s PartyCon will take place at the Mae District on Wednesday, November 8 from 7:00-10:00 pm. Due to limitations, the registration will close once we reach full capacity. Be sure to register now in order to secure your spot!
Reach out to our team or schedule a conversation ahead of KubeCon NA.
See you in Chicago!
