SLSA has been in its 1.0 version for a year and a half, and the ecosystem has had time to adopt it. A review of what works, what still hurts, and where it makes sense to start.
Read moreSLSA v1.0: a mature framework for the software supply chain
Tag: seguridad
How to install CrowdSec as a community WAF
Practical walkthrough for deploying CrowdSec as a WAF with Traefik. Architecture decisions, bouncers, captcha remediation, and what the community blocklist really adds.
Read moreZero Trust: Principles to Stop Trusting the Network
Zero Trust isn’t a product, it’s an architecture. The five principles governing a model where nothing is trusted by default, not even the internal network.
Read morePodman: Containers Without a Daemon or Root
Podman offers the same experience as Docker, but without a central daemon or root privileges. When the switch makes sense and what you’ll hit along the way.
Read moreTrivy and Grype: Container Image Scanning in CI
Comparison of Trivy and Grype for image scanning: architecture, coverage, performance, and pipeline integration.
Read moreHashiCorp Vault for Secrets Management
Vault centralises secrets with rotation, auditing, and granular policies. A practical guide for teams graduating from .env to serious management.
Read more