Welcome to the AKS DevSecOps Workshop, a hands-on learning experience designed to help developers, security engineers, and DevOps professionals understand how to integrate security into the Azure Kubernetes Service (AKS) lifecycle. This workshop demonstrates best practices for securing containerized applications, implementing CI/CD pipelines, and applying governance and compliance standards in a cloud-native environment.
The full lab guide is hosted on Notion, providing step-by-step instructions, exercises, and references for each module:
- Notion Lab Guide: AKS DevSecOps Workshop
- Setting up an Azure Kubernetes Service (AKS) cluster
- Integrating security scanning into CI/CD pipelines
- Implementing DevSecOps practices for containerized applications
- Using Azure Policy and governance tools for compliance
- Detecting vulnerabilities and remediating risks in AKS deployments
For reference, the original workshop repository from Microsoft is available here:
- Original Repo: Azure AKS DevSecOps Workshop
- Developers looking to build secure applications on Kubernetes
- DevOps engineers aiming to integrate security into CI/CD pipelines
- Security professionals exploring practical cloud-native security controls
- Students or enthusiasts learning modern DevSecOps practices
- Review the Notion lab guide to understand the workshop structure and prerequisites.
- Clone this repository for access to scripts, templates, and exercise files.
- Follow along with the lab modules to build, secure, and deploy applications in AKS while applying DevSecOps practices.
H/T to the Contributors of https://github.com/Azure/AKS-DevSecOps-Workshop, including https://github.com/ahmedbham https://github.com/msmarti and others who developed and open sourced this exercise.