Skip to content

Feature/lab7#1406

Open
kvakz wants to merge 21 commits into
inno-devops-labs:mainfrom
kvakz:feature/lab7
Open

Feature/lab7#1406
kvakz wants to merge 21 commits into
inno-devops-labs:mainfrom
kvakz:feature/lab7

Conversation

@kvakz

@kvakz kvakz commented Jul 3, 2026

Copy link
Copy Markdown

Goal: lab 7 done

Changes:
labs/lab7/k8s/deployment.yaml
labs/lab7/k8s/namespace.yaml
labs/lab7/k8s/networkpolicy.yaml
labs/lab7/k8s/serviceaccount.yaml
labs/lab7/policies/pod-hardening.rego
submissions/lab7.md

  • Task 1 — Trivy image + config scans + Grype comparison
  • Task 2 — Hardened K8s deployment with PSS restricted + NetworkPolicy
  • Bonus — Conftest policy passing on hardened + failing on bad manifest
  • Title is clear (feat(labN): <topic> style)
  • No secrets/large temp files committed
  • Submission file at submissions/labN.md exists

kvakz and others added 21 commits June 12, 2026 17:38
feat/lab1: establish core PR template structure
feat/lab1: secure GitHub Actions smoke test workflow
feat(lab2): Threagile threat model + secure variant + auth flow
feat(lab4): juice-shop SBOM + Grype/Trivy comparison + sign-ready att…
feat(lab6): Checkov + KICS scans + custom policy
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant