I had the great opportunity to speak at openSUSE Conference 24 in Nuremberg about Pagure CI integration with AWS CodePipeline and NeuVector Integration into AWS CodePipeline CI/CD workflow, the recordings are now online.
Session 1: Pagure CI integration with AWS CodePipeline
Pagure is a lightweight git centered forge based on Python with a long usage history in the Fedora project. It's well known in the openSUSE project too with an instance on code.opensuse.org. I demonstrate in this talk the current state of the Pagure Plugin system. How I implemented AWS CodePipeline as additional CI type. And how this can serve as blueprint to optimize the Plugin system and add other CI types. I will share the current status of my work to run Pagure on Kubernetes. And some good-first-issues you can tackle if you want to contribute to Pagure.
Session 2: NeuVector Integration into AWS CodePipeline CI/CD workflow
NeuVector is a open source container security platform. Key strengths are vulnerability and runtime scanning. I demonstrate in this talk how you ensure that only container images without a detected vulnerability move to the next stage in your Pipeline. How you define the baseline of allowed activities of your application. And how you can block the deployment into production if an unexpected behavior at runtime was detected in your testing stage. I'll use AWS CodePipeline, AWS CodeDeploy and AWS CloudFormation. The procedure is applicable to other toolset and Hybrid environments as well.