Speaker

Charles-Edouard Brétéché

Charles-Edouard Brétéché

Nirmata, Staff engineer - Kyverno team

Rennes, France

Actions

Charles-Edouard Brétéché is a Staff Engineer at Nirmata, a maintainer for Kyverno, and has created and contributed to various open source projects. including a Terraform provider for kOps.

He has been building and delivering software for more than 20 years, as a software engineer, SRE, platform engineer, devops engineer and software architect.

Area of Expertise

  • Information & Communications Technology

Topics

  • Kubernetes
  • Governance
  • Policy as Code

Introducing the BACK stack!

Are you searching for a robust and efficient internal developer platform (IDP) architecture?

Look no further than the BACK Stack. This state-of-the-art architecture utilizes four widely adopted CNCF projects - Backstage, ArgoCD, Crossplane, and Kyverno - to provide a comprehensive and scalable IDP solution.

The BACK Stack was introduced at Kubecon NA 2023 and received highly positive feedback.

In this tutorial, attendees will gain an in-depth understanding of the various components of the BACK Stack and how they work together to provide an efficient IDP solution.

Experts from Akuity, Crossplane, and Nirmata will guide you through adding a workflow and enhancing the stack, providing hands-on experience and valuable tips.

By attending this tutorial, you'll have the opportunity to learn from the best in the industry and gain the knowledge and tools needed to take your IDP to the next level.

Take advantage of this exciting opportunity to elevate your internal developer platform!

Presenting Kyverno JSON engine, Kyverno beyond Kubernetes.

The Kyverno project has broadened its scope to support JSON payloads, extending its reach beyond Kubernetes resources. This makes it ideal for platform engineers engaged in the governance of Infrastructure-as-Code, cloud services, and application authorization. This capability is crucial for addressing the security requirements of cloud-native systems at scale.
In this session, our speakers will explore the many use cases from enabling logs in Amazon ECS cluster to disallowing the user to be root in a dockerfile. The focus will be on Kyverno's JSON engine, central to addressing these challenges, empowering engineers to create clear YAML policies for robust security. Through practical implementations, the speakers will showcase how Kyverno JSON engine can effectively address security concerns across all IaC types. The session will provide platform engineers with insights into leveraging Kyverno for seamless security governance in diverse infrastructure and code scenarios.

From Chaos to Control: Cloud Native Governance with Kyverno!

Kyverno started life as a Kubernetes policy engine and has quickly evolved into a set of widely adopted tools for cloud native policy and governance.

In the session, Raul, a Kyverno end user and platform lead at DE-CIX, will introduce the project for new users and discuss his organization's journey with policy as code. Next, Kyverno maintainers Mariam and Charles-Edouard will provide key updates and discuss advanced features including new sub-projects like Kyverno JSON and Kyverno Chainsaw, and share the project roadmap.

If you want to learn how to automate security concerns, or offer guardrails as part of your Kubernetes platform, then this session is for you!

Driving Adoption of Kyverno: Empowering Teams for Effective Policy Enforcement in Modern Application

While speed is crucial in deployment, the paramount concern is to avoid security breaches and promptly identify and rectify any flawed deployments.

Policy engines, have gained widespread popularity for their role in detecting and preventing the deployment of resources that deviate from a company's expectations. However, the success of implementing such a tool goes beyond mere installation.

In this session, we will go through the journey of integrating Kyverno across various teams within an organisation. Starting from day one, when Kyverno is first installed in a cluster, to the stage where diverse teams within the company seamlessly incorporate it into their daily workflows, gaining a deep understanding of its functionality and recognising its value.

The session will provide a comprehensive perspective, examining Kyverno through the eyes of different populations, including platform engineers, security teams, developer teams, and more.

Unlocking the Power of Kyverno Chainsaw: A Dive into Effortless End-to-End Testing for Kubernetes Op

Join us as we unveil Chainsaw, Kyverno's revolutionary open-source end-to-end testing tool designed for seamless Kubernetes cluster testing. No coding required!
Chainsaw enables a fully declarative interaction with Kubernetes clusters, making resource manipulation and state assertion a breeze.

🚀 What to Expect:

- Dive into Chainsaw's YAML-based testing, representing ordered sequences of test steps.
- Explore operations like deleting, creating, updating resources, and asserting resource states.
- Discover the advantages of the declarative approach: simplified test writing, reduced complexity for contributors, and improved readability.
- Witness live demos and practical examples showcasing the flexibility of Chainsaw's assertion trees.
- Overcome Kubernetes operators' end-to-end testing challenges effortlessly.

🌐 Why Chainsaw:

- Simplified Test Writing: Enjoy an easy and almost fun test writing experience.
- Reduced Contributor Complexity: Make end-to-end testing accessible to all contributors.
- Enhanced Readability and Maintainability: Ensure clear test intent with a declarative approach.
- Bug to Test Conversion: Effortlessly convert bug manifests into end-to-end tests.

Don't miss this chance to demystify end-to-end testing and elevate your Kubernetes operator game with Chainsaw!
Join us for a session filled with insights, demos, and a peek into the future of testing in Kubernetes environments.

Charles-Edouard Brétéché

Nirmata, Staff engineer - Kyverno team

Rennes, France

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top