Docker – Automate Snyk Docker Image Scanning With GITHub Actions
Snyk is a great tool for vulnerability scanning, it’s included in Docker Desktops docker scan feature (10 “free” scans, then requires registration) and has it’s own CLI tools for code and container scanning. It is, also, available as a pipeline action. Here is how to use it with GITHub actions. First, Create a secret on…
Docker – Administer Docker Server Remotely With Docker Context (Over SSH)
Once you have deployed your single, or multiple, Docker server(s) and find Kubernetes a bit much or overkill. You may want to administer your swarm of containers, much in the same manner as kubectl helps administer Kubernetes pods. This is possible with Docker Context. Here’s how to connect administer your docker runtime(s) remotely using Docker…
Docker – TLS/SSL Reverse Proxy For Docker Notary Server
Docker Notary Server is necessary for applying proper Docker DCT. But the support for applying your own TLS/SSL Certificate is.. shall we say.. ancient. Sure, you can supply your own certificate, docker-compose build, docker-compose up -d aaaaand.. Docker Notary Server is running with the supplied certificate, generated with LetsEncrypt, valid for.. three months.. Here’s how…
Docker – Simple Registry Web UI With Docker-Registry-UI From Joxit
Hosting your own Docker registry is great, it’s just that… It’s pretty anonymous. You don’t really get to see how many images you have, or their tags, or image digests etc. Unless you want to send manual GET requests via CURL, you can use joxit/docker-registry-ui. Add the following to “ui service” to your existing registry…
Kubernetes – Passbolt Kubernetes Deployment
Passbolt is great. It provides a secure and very useful interface for password/manual secret storage. Both the Firefox addon and iOS App works great, and are easy to setup and use. The available documentation explains installation on most platforms, including Ubuntu and Docker, but no “basic” Kubernetes deployment. With that said, I am aware of…