3 years ago

Category: Software, Database, Security, Kubernetes, automation

The free availability of hundreds of thousands of open-source applications and components available as containers in public registries like Docker Hub presents both opportunities and challenges for enterprises looking to make the most of their shiny new Kubernetes clusters. But it is difficult to know whether containerized software from public registries is high quality: if it was packaged using best practices for security, or what versions and patch levels of dependencies are included.

Tanzu Application Catalog takes a unique approach to solving this problem: the Bitnami automated pipeline gets the software in every container directly from the upstream source and updates it for you over time.

We have covered in depth how Tanzu Application Catalog delivers security benefits by building your software on hardened operating systems of your choice, keeping all of your containers up to date and scanned, and delivering an exceptionally high level of transparency.

Here are some resources to learn more: Learn about Bitnami’s best security practices for packaging Helm chartsRead about best practices for hardening containersSecurity best practices for using your Tanzu Application Catalog Helm charts in production environmentsCheck out this series of tutorials on best practices for creating application images on Bitnami/Tanzu App Catalog containersMake sure and check out the Tanzu Application Catalog breakout sessions and demos at VMworld!