Tech
June 9

Automating a secure GitOps workflow with multi-tenant SonarQube and dependency track on Kubernetes

We discuss streamlining platform engineering workflows by implementing automated code quality and security checks in a GitOps workflow, using SonarQube and Dependency Track on Kubernetes. Attendees will learn how to set up and configure these tools for multi-tenant architectural use, integrate with GitHub-based CI pipelines, and ensure data persistence.
Talk abstract

Are you struggling with maintaining code quality and security across your Internal Developer Platforms? 

Join our talk and learn how to automate your GitOps workflow with multi-tenant instances of SonarQube and Dependency-Track on Kubernetes. We'll cover the following topics:

  • Setting up SonarQube and Dependency-Track instances on Kubernetes using ArgoCD  manifests 
  • Adding SonarQube and Dependency-Track-based GitHub actions to your CI pipeline 
  • Creating multi-tenant architecture on SonarQube and Dependency-Track to restrict visibility for different users 

The knowledge you would gain from the talk will help you mitigate risks and increase efficiency for the platform engineering team.

Kush Shah
Engineer, Data Platform, HBK

Related talks

Tech
June 9
Automate R&D workflows using serverless functions
As the cloud-native environment becomes increasingly complex and dynamic, it presents numerous challenges for platform teams. Managing software development manually is difficult and prone to human error and security issues, making automation essential for reducing workload and increasing security.
Michael Yuan
Founder & CEO, Second State
sponsored
Tech
June 8
Abstracting Kubernetes and setting standards with internal developer portals
Developers find it difficult to manage Kubernetes, let alone understand it when troubleshooting or developing in a shift left world. Internal developer portals can be used to abstract and whitelist K8s data and set standards through scorecards.
Suzanne Daniels
Developer Relations Lead, Port
sponsored
Tech
June 9
The current state and future of Internal Developer Portals
This session will cover how an internal developer portal and platform helps organizations, the current state of the internal developer portal product category, and the future of internal developer portals.
Seth Demsey
Co-Founder, configure8
sponsored
Tech
June 9
How to deploy Kotlin applications to Kubernetes without Dockerfiles
In this talk Lothar shares how to create docker images with Kotlin and Gradle only. Lothar will showcase a ktor application as well as create and deploy a Docker image that contains the application to a Kubernetes cluster. The deployment happens on the command line only - every code change will trigger an instant deployment of a newly created Docker image to a Kubernetes cluster.
Lothar Schulz
Head of Engineering, Miro
sponsored