Course TOpics
Pipeline Hardening
Secure your CI/CD and ML pipelines end-to-end. Supply chain attacks, secret leakage, and artifact integrity are engineering problems — here’s how to solve them.
Secure your CI/CD and ML pipelines end-to-end. Supply chain attacks, secret leakage, and artifact integrity are engineering problems — here’s how to solve them.
The SolarWinds and XZ Utils incidents showed what happens when pipelines aren’t treated as security boundaries. This topic teaches how to build pipelines that are.
SBOM generation, dependency pinning, provenance verification, and Sigstore signing. Build pipelines where every artifact has a verifiable chain of custody.
Vault, AWS Secrets Manager, and OIDC-based authentication. Eliminate static credentials from pipelines without making developer experience painful.
OPA, Kyverno, and Conftest for enforcing security and compliance policy in CI/CD pipelines. Catch violations before they reach production.
Falco, eBPF-based monitoring, and anomaly detection for pipeline workloads. Know when your build environment is behaving unexpectedly.