-
-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
968c211
commit 905aa65
Showing
55 changed files
with
1,252 additions
and
0 deletions.
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,57 @@ | ||
| --- | ||
| title: The scary story of DevSecOps | ||
|
|
||
| event: DevFest Nantes 2024 | ||
| event_url: https://devfest.gdgnantes.com | ||
|
|
||
| location: Nantes (Palais des Congrés) | ||
| address: | ||
| street: 5 Rue de Valmy | ||
| city: Nantes | ||
| region: Loire-Atlantique | ||
| postcode: '44000' | ||
| country: France | ||
|
|
||
| summary: DevSecOps, step by step | ||
| abstract: "You probably know about Linux [Install Parties](https://fr.wikipedia.org/wiki/Install_party)? Then let's do the same with Security, we will follow the [DevSecOps](https://davidaparicio.gitlab.io/website/files/devsecops_software_lifecycle.jpg) approach of the [US Department of Defense](https://public.cyber.mil/devsecops/). For that, nothing could be easier, come with your computer, your opensource project and your tools (IDE, CI/CD). After a few presentation slides, we will go step by step through the security of your application. If your application is dockerized, we will evoke the [good practices of the ANSSI](https://www.ssi.gouv.fr/guide/recommandations-de-securite-relatives-au-deploiement-de-conteneurs-docker/) on this subject. We will see, through this workshop, how GitOps/CI/CD allow us and organizations to improve our posture towards security." | ||
|
|
||
| date: "2024-10-17T08:30:00Z" | ||
| date_end: "2024-10-18T18:30:00Z" | ||
| all_day: false | ||
|
|
||
| publishDate: "2024-09-01T00:00:00Z" | ||
|
|
||
| authors: [David Aparicio] | ||
| tags: [Workshop, Cybersecurity, DevSecOps, Security, SecurityByDesign] | ||
|
|
||
| featured: false | ||
|
|
||
| image: | ||
| caption: 'Image credit: [**DevFest Nantes 2024**](https://devfest.gdgnantes.com/)' | ||
| focal_point: Right | ||
|
|
||
| links: | ||
| - icon: file #th-list #list-alt | ||
| icon_pack: fas | ||
| name: Code | ||
| url: https://github.com/davidaparicio/devsecops-workshop/tree/conf/devfestnantes2024 | ||
| - icon: binoculars | ||
| icon_pack: fas | ||
| name: Description | ||
| url: https://devfest.gdgnantes.com/sessions/la_securite__par_ou_commencer___install_party___/ | ||
| - icon: comments | ||
| icon_pack: fas | ||
| name: Feedback | ||
| url: https://devfest.gdgnantes.com/sessions/la_securite__par_ou_commencer___install_party___/ | ||
| #- icon: file-alt | ||
| # icon_pack: fas | ||
| # name: Post | ||
| # url: https://blog.ovhcloud.com/ovhcloud-at-touraine-tech/ | ||
| url_code: "" | ||
| url_pdf: "" | ||
| url_slides: "fr/codelabs/devfestnantes24" | ||
| url_video: "" | ||
|
|
||
| slides: "" | ||
| projects: [] | ||
| --- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,26 @@ | ||
| { | ||
| "environment": "web", | ||
| "format": "html", | ||
| "prefix": "https://storage.googleapis.com", | ||
| "mainga": "UA-49880327-14", | ||
| "updated": "2024-10-17T15:31:14+02:00", | ||
| "id": "devfest24", | ||
| "duration": 200, | ||
| "title": "La sécurité, par où commencer ? Install party 🎉", | ||
| "authors": "David Aparicio", | ||
| "summary": "La sécurité, par où commencer ? Install party", | ||
| "source": "devfest24.md", | ||
| "theme": "", | ||
| "status": [ | ||
| "published" | ||
| ], | ||
| "category": [ | ||
| "devsecops", | ||
| "security" | ||
| ], | ||
| "tags": [ | ||
| "devfest" | ||
| ], | ||
| "feedback": "https://github.com/davidaparicio/devsecops-workshop/issues", | ||
| "url": "devfest24" | ||
| } |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
Large diffs are not rendered by default.
Oops, something went wrong.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,57 @@ | ||
| --- | ||
| title: Une histoire d'horreur de DevSecOps | ||
|
|
||
| event: DevFest Nantes 2024 | ||
| event_url: https://devfest.gdgnantes.com | ||
|
|
||
| location: Nantes (Palais des Congrés) | ||
| address: | ||
| street: 5 Rue de Valmy | ||
| city: Nantes | ||
| region: Loire-Atlantique | ||
| postcode: '44000' | ||
| country: France | ||
|
|
||
| summary: À la découverte du DevSecOps | ||
| abstract: "Vous connaissez probablement les Linux [Install Parties](https://fr.wikipedia.org/wiki/Install_party) ? Alors, faisons de même avec la Sécurité, nous allons suivre l'approche [DevSecOps](https://davidaparicio.gitlab.io/website/files/devsecops_software_lifecycle.jpg) du [ministère américain de la défense](https://public.cyber.mil/devsecops/). Pour cela, rien de plus simple, venez avec votre ordinateur, votre projet opensource et vos outils (IDE, CI/CD). Après quelques slides de présentation, nous évolurons étape par étape dans la sécurisation de votre application. Si votre application est dockerisée, nous évonquerons les [bonnes pratiques de l'ANSSI](https://www.ssi.gouv.fr/guide/recommandations-de-securite-relatives-au-deploiement-de-conteneurs-docker/) sur ce sujet. Nous verrons ainsi, à travers cet atelier, comment le GitOps/CI/CD permettent à nous et aux organisations d'améliorer notre posture face à la sécurité." | ||
|
|
||
| date: "2024-10-17T08:30:00Z" | ||
| date_end: "2024-10-18T18:30:00Z" | ||
| all_day: false | ||
|
|
||
| publishDate: "2024-09-01T00:00:00Z" | ||
|
|
||
| authors: [David Aparicio] | ||
| tags: [Workshop, Cybersécurité, DevSecOps, Sécurité, SecurityByDesign] | ||
|
|
||
| featured: false | ||
|
|
||
| image: | ||
| caption: 'Crédits: [**DevFest Nantes 2024**](https://devfest.gdgnantes.com/)' | ||
| focal_point: Right | ||
|
|
||
| links: | ||
| - icon: file #th-list #list-alt | ||
| icon_pack: fas | ||
| name: Code | ||
| url: https://github.com/davidaparicio/devsecops-workshop/tree/conf/devfestnantes2024 | ||
| - icon: binoculars | ||
| icon_pack: fas | ||
| name: Description | ||
| url: https://devfest.gdgnantes.com/sessions/la_securite__par_ou_commencer___install_party___/ | ||
| - icon: comments | ||
| icon_pack: fas | ||
| name: Avis | ||
| url: https://devfest.gdgnantes.com/sessions/la_securite__par_ou_commencer___install_party___/ | ||
| #- icon: file-alt | ||
| # icon_pack: fas | ||
| # name: Article | ||
| # url: https://blog.ovhcloud.com/ovhcloud-at-touraine-tech/ | ||
| url_code: "" | ||
| url_pdf: "" | ||
| url_slides: "fr/codelabs/devfestnantes24" | ||
| url_video: "" | ||
|
|
||
| slides: "" | ||
| projects: [] | ||
| --- |