Ratify

Check out how you can prevent non-compliant containers from running on your #Kubernetes cluster with @artifact_ratify @toddysm learn.microsoft.com/en-us/shows/op…

Thank you to all who contributed to this major release of Ratify. ratify.dev/blog/ratify-v1…

Super excited to see @artifact_ratify v1 land. Massive kudos to the team Release v1.0.0 · deislabs/ratify (github.com)

Come join us for the next AKS Community Meeting on 9/21 at 4:00pm GMT. In this episode we will have folks from the @NotaryProject community that will talk about how to secure container images throughout the supply chain. #azure #aks Live stream link: youtube.com/watch?v=qih39M…

AWS Signer now supports signing and verifying container images, and is integrated with Notation! In addition, @artifact_ratify and @openpolicy Gatekeeper as the admission controller are used with an AWS Signer plugin for validating signatures. aws.amazon.com/blogs/containe…

Happening now - Securing container deployments on AKS with open-source tools. Registration is free - build.microsoft.com/en-US/sessions…

How does Microsoft use open source tools to scan, patch, sign, and enforce policies for container images we ship? Come to my demo at #MSBuild "Seamlessly integrate security throughout your code to cloud workflow" session w/ @brendandburns tmr at 4:00! build.microsoft.com/en-US/sessions…

Ratify v1.0.0-RC.2 was released last week. This article walks you through an end-to-end workflow of validating and enforcing that only signed images are allowed to be deployed on AKS @azurekubernetes with Notation and Ratify: github.com/deislabs/ratif…

I’m really excited about the progress we’re making with Ratify. If you’re using Kubernetes and looking for an artifact security verification engine then check out @artifact_ratify

Ratify v0.1.3 alpha is now live! The latest release supports authentication to private registries, easier certificate management and many performance improvements. Learn how to secure your #softwaresupplychain at #quick-start" target="_blank" rel="nofollow noopener">github.com/deislabs/ratif…

🎁 It started when @khenidak and I realized #Kubernetes persisted data in etcd in plaintext. Fast forward, now it’s part of AKS on @azure! Go try this feature and keep your k8s data encrypted! docs.microsoft.com/en-us/azure/ak… Congrats @AnishRamasekar and team!

Want to verify artifact signatures in your CI/CD pipeline? Join our community meeting 4pm today to checkout how to run Ratify as #GitHubAction Get calendar invite here: #community-meetings" target="_blank" rel="nofollow noopener">github.com/deislabs/ratif…

Great seeing OCI registry support graduate out of experimental. Kudos to all involved!

Is your #Kubernetes #softwaresupplychain secure? We are hosting our Community Call next Tuesday 1/25 at 4pm PST! Come meet the Ratify team to learn more about signature and SBoM verification. Get the calendar invite here: #community-meetings" target="_blank" rel="nofollow noopener">github.com/deislabs/ratif…

Check out how to verify your containers on @awscloud using @artifact_ratify and @projectsigstore's cosign. github.com/deislabs/ratif…"

Securing the Kubernetes software supply chain infoworld.com/article/364480… via @infoworld

Worried about software supply chain? (spoiler alert: you should be) Ratify is a new open source project that enables validation of containers in kubernetes prior to deployment! Check it out: msft.it/6018ZBWre

If this is an area critical to you, love to have you take it for a spin and join the community! cloudblogs.microsoft.com/opensource/202…