![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=60,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
This conference talk explores how digital signing and policy enforcement can protect against supply chain threats in cloud native environments. Learn how CNCF projects like ORAS, Notary, Flux, and Kyverno work together to ensure everything in production clusters—from images to configuration YAML—comes from trusted sources and hasn't been tampered with. Discover practical solutions for cluster operators facing challenges like rate-limiting, unauthorized configuration changes, and registry tampering. Follow along as Jeremy Rickard from Microsoft demonstrates a complete end-to-end implementation and access sample code from a provided GitHub repository to enhance your cluster security posture.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
