Skip to Main Content
Talk Intermediate

Building Secure Containers: A Practical Guide to Harbor and Vulnerability Scanning

Approved
Session Description

Containers are everywhere. It is the backbone of modern development, but ensuring their security is often overlooked. In this session, we’ll explore how Harbor, an open-source container registry, simplifies container management and security. Through live demo, we willl learn how to containerize our applications, scan images for vulnerabilities, and adopt best practices to build secure, production-ready containers. We’ll also dvelve into advanced concepts like SBOMs and supply chain security, equipping us with the tools to secure our development pipeline and build and ship secure software.

References

https://github.com/goharbor/harbor

Session Categories

FOSS

Speakers

Prasanth Baskar
Software Engineer 8gears AG
Prasanth Baskar

I build cool stuff with Go, React and Next.js while living in the terminal (yes, I use Arch BTW). As a core contributor to Harbor & Harbor CLI, a CNCF graduated Project. I’ve helped scale cloud-native registries, and as a core contributor of Harbor CLI, I ensure developer tools are efficient and user-friendly. Containers, Linux, and crafting CLIs are my jam, with AWS, Docker, and Kubernetes as my go-to tools for building scalable infrastructures.


When I’m not optimizing cloud workflows, I’m solving algorithmic problems in Java and getting stuck in Vim. My work has improved deployment pipelines, streamlined developer operations, and simplified complex cloud architectures.


Vim > IDEs, nothing beats a well-crafted CLI, and Kubernetes makes everything better. Looking for roles where I can ship impactful code, contribute to open-source, and tackle complex engineering problems over coffee. A versatile dev who thrives on React, Go, Java, and all things cloud!

Reviews

Reviewer #1 Approved
Reviewer #2 Rejected
Well written CFP and important topic to discuss
Reviewer #3 Approved
Definitely approve if there aren't already multiple other k8s/docker talks. Will likely be too advanced for some who don't know a lot about containers. But otherwise a great talk and very practical skills to learn for the commercial FOSS --> SOSS (Secure Open Source Software) landscape.
Reviewer #4 Not Sure