Episode 31 - Container Security with Josh Duffney
Josh walks us through the powerful combination of open-source CNCF projects that address different aspects of container supply chain security. Learn how Trivy scans for vulnerabilities, Copasetic performs targeted patching when base image updates aren't possible, Notation provides digital signatures to verify trust, and Ratify enforces security policies at deployment time. Together, these tools create a comprehensive approach to securing containers from build to runtime.
Ready to strengthen your container security posture? Listen now and discover how these tools can integrate into your existing workflows. Remember to follow us on social media to stay updated with more insights from community experts and share your thoughts on this episode!
Microsoft Community Insights Podcast
Welcome to the Microsoft Community Insights Podcast, where we explore the world of Microsoft Technologies. Interview experts in the field to share insights, stories, and experiences in the cloud.
if you would like to watch the video version you can watch it on YouTube below
https://youtube.com/playlist?list=PLHohm6w4Gzi6KH8FqhIaUN-dbqAPT2wCX&si=BFaJa4LuAsPa2bfH
Hope you enjoy it
- No. of episodes: 33
- Latest episode: 2025-05-04
- Technology
Where can you listen?
