SlideShare a Scribd company logo

Find Red Hat Container Images and Metadata

Red Hat
Red Hat

Slides from my presentation held multiple times at Red Hat Summit 2017 around the Red Hat Container Catalog including the new Container Health Index.

Software
1 of 23
Download to read offline
Red Hat Container Catalog Consuming Container Images from Red Hat and its Ecosystem Dirk Herrmann Product Owner Container Catalog May 2nd 2017
The Value & New Challenges It’s quick and easy to pull a Linux container image from a public registry and get started. In fact, too easy. There can be an explosion of different distributions, architectures, performance and security characteristics in different images.
Red Hat Registry Stats ● 227 repositories ● 2,169 images ● 1+ TB storage Red Hat Security Statistics 2016 ● 97 critical RHSA ● 286 important RHSA ● 100% fixed in <1d * ● Cross-team effort of 10 teams across 4 organizations ● Design driven approach focusing on end customer user experience Red Hat Customer Portal Stats 2016 ● 13,100,00 visitors ● 2,400,000 searches ● 108,300,000 views ● Container Health Index ● Extensive Image Metadata ● Image Documentation ● Image Advisories * 100% of critical security flaws in RHEL have been fixed in less than one day: https://access.redhat.com/blogs/766093/posts/2957221
Vision Our vision is to help developers, architects, and IT operations realize the full potential of containers by transforming the way container-based applications are built, delivered, and consumed Mission Our mission is to provide customers and partners with the best experience when delivering and consuming container-based applications. This includes the right information and guidance to make intelligent decisions about which container images to consume Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain
Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to explore what’s inside the Red Hat Container Catalog I want to search for a product and see all images belonging to it Joe Architect I‘m searching for a database container image I’m searching for Red Hat Enterprise Linux base image Jane Developer
use our explore page to browse most relevant products and image categories Base, Builder and Application Images app categories such as database, programming language, logging popular Red Hat and Ecosystem products
I’m looking for a base image, what are my options? use the Base Images filter on search page to find our Red Hat base images or use Base Images tile on explore page Jane Developer
Search results with key data Type-ahead contains products, repositories and app categories Filter facets for multiple characteristics You can search for: ● Images / Repos ● Products ● Image ID ● Advisory ID ● Categories ● Keywords ● etc.
Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to see the key characteristics of an image. Is there documentation available around an image? Joe Architect What are the environment variables defined inside the image? I would like to learn how this images has been built. Jane Developer
additional tabs for consumption guidance, further technical details, surrounding documentation and tag index overview page shows most relevant repository and latest image version data
Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to learn more how to consume and use this image. Do I need a subscription or license to pull it? Joe Architect I want to pull this image, what do I need to do? I’m using Red Hat Satellite 6, how can I sync the repository? Jane Developer
consumption details including copyable command lines consumption guidance for different container runtime env’s and registries
Surrounding documentation supposed to provide additional guidance for consumption and usage
Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to see which updates are applicable to an image used by us I want to see an actionable result for applicable security updates Carl Security I want to get a list of all images associated with an advisory ID I want to see an aggregated and simple freshness description Jane Developer
Get the image ID using CLI or registry UI1 2 3 How can I get more details around an image I’m using?Jane Developer Use the container catalog search to find the image Select the right image version and explore details
Image advisories shown for each image version Search for image advisory ID shows affected images
Leveraging Red Hat security data (advisories) for RPMs and images Actionable scan results (RPM, Image) Developed as a cross-team effort leveraging Red Hat’s Security expertise Single item status (grade A-F) as an aggregated indicator of container health Red Hat Registry Stats ● 227 repositories ● 2,169 images ● 542,525 RPMs Red Hat Security Statistics 2016 ● 3134 advisories ● 5075 unique CVEs ● 2016: 97 crit RHSA images are static content bundles security issues emerge frequently but age of the image unapplied updates health index indicators
list of all image versions inside this repository Container Health Index history key version attributes
What is the associated risk with the content inside the image? Container Health Index based on applicable security updates and its age vulnerabilities by advisory severity Carl Security warning if non-current image version privilege requirements
How can I get rid of those vulnerabilities ? Red Hat advisory severity newer image version which contains fix Carl Security content advisory which contains fix CVE ID
What’s next? Upcoming features of future Red Hat Container Catalog releases ● Ecosystem content incl. Red Hat Certified and OpenShift Primed ● Additional acquire paths, image usage documentation ● OpenShift on-premise / Online enhancements ● Subscribe to notifications for products, images and categories for new images, image versions, advisories, freshness grade changes ● Subscriptions / licenses, support policies, FOSS license compliance You have feedback? An idea or feature request? Let’s meet at our User Experience Design booth. Partner Pavilion Exhibit Hall A Try it out: https://access.redhat.com/containers
THANK YOU plus.google.com/+RedHat linkedin.com/company/red-hat youtube.com/user/RedHatVideos facebook.com/redhatinc twitter.com/RedHatNews

Recommended

Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13
Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13
Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13Zach Hill
 
System analysis and design
System analysis and designSystem analysis and design
System analysis and designRobinsonObura
 
seanresume15-a
seanresume15-aseanresume15-a
seanresume15-aSean Lynch
 
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler Vangorder
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler VangorderEvolving Your Distributed Cache In A Continuous Delivery World: Tyler Vangorder
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler VangorderRedis Labs
 
Opinioz_intern
Opinioz_internOpinioz_intern
Opinioz_internSai Ganesh
 
Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Jose Pagan
 
Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Jose Pagan
 
Investment Fund Analytics
Investment Fund AnalyticsInvestment Fund Analytics
Investment Fund AnalyticsBernardo Najlis
 

Recommended

Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13
Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13
Open Source Tools for Container Security and Compliance @Docker LA Meetup 2/13Zach Hill
 
System analysis and design
System analysis and designSystem analysis and design
System analysis and designRobinsonObura
 
seanresume15-a
seanresume15-aseanresume15-a
seanresume15-aSean Lynch
 
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler Vangorder
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler VangorderEvolving Your Distributed Cache In A Continuous Delivery World: Tyler Vangorder
Evolving Your Distributed Cache In A Continuous Delivery World: Tyler VangorderRedis Labs
 
Opinioz_intern
Opinioz_internOpinioz_intern
Opinioz_internSai Ganesh
 
Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Jose Pagan
 
Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Oop final project documentation jose pagan v2.1
Oop final project documentation jose pagan v2.1Jose Pagan
 
Investment Fund Analytics
Investment Fund AnalyticsInvestment Fund Analytics
Investment Fund AnalyticsBernardo Najlis
 
Implementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud PlatformsImplementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud PlatformsGaurav "GP" Pal
 
Fundamentals of software development
Fundamentals of software developmentFundamentals of software development
Fundamentals of software developmentPratik Devmurari
 
Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)softwaresatish
 
香港六合彩
香港六合彩香港六合彩
香港六合彩taoyan
 
Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019Microsoft 365 Developer
 
2011 NASA Open Source Summit - Forge.mil
2011 NASA Open Source Summit - Forge.mil2011 NASA Open Source Summit - Forge.mil
2011 NASA Open Source Summit - Forge.milNASA Open Government Initiative
 
4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager Strategy4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager StrategySonatype
 
ESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPXESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPXCatalogic Software
 
Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011Extensis
 
How Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT AnalyticsHow Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT AnalyticsArcadia Data
 
Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018Microsoft 365 Developer
 
Power Platform Governance
Power Platform GovernancePower Platform Governance
Power Platform GovernanceDaniel Laskewitz
 
ICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology StackICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology StackChristine Edmonds
 
Owasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing masterOwasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing masterDinis Cruz
 
Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0i4box Anon
 
Cm24585587
Cm24585587Cm24585587
Cm24585587IJERA Editor
 
Choosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdfChoosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdfMPIRIC Software
 
Ramesh Selenium
Ramesh SeleniumRamesh Selenium
Ramesh SeleniumRamesh Khamari
 
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BIAugmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BIDenodo
 
Sybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs ErwinSybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs ErwinSybase Türkiye
 
Zer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdfZer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdfmaor17
 
Introduction to Firebase Workshop Slides
Introduction to Firebase Workshop SlidesIntroduction to Firebase Workshop Slides
Introduction to Firebase Workshop Slidesvaideheekore1
 

More Related Content

Similar to Find Red Hat Container Images and Metadata

Implementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud PlatformsImplementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud PlatformsGaurav "GP" Pal
 
Fundamentals of software development
Fundamentals of software developmentFundamentals of software development
Fundamentals of software developmentPratik Devmurari
 
Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)softwaresatish
 
香港六合彩
香港六合彩香港六合彩
香港六合彩taoyan
 
Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019Microsoft 365 Developer
 
4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager Strategy4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager StrategySonatype
 
ESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPXESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPXCatalogic Software
 
Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011Extensis
 
How Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT AnalyticsHow Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT AnalyticsArcadia Data
 
Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018Microsoft 365 Developer
 
ICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology StackICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology StackChristine Edmonds
 
Owasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing masterOwasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing masterDinis Cruz
 
Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0i4box Anon
 
Choosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdfChoosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdfMPIRIC Software
 
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BIAugmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BIDenodo
 
Sybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs ErwinSybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs ErwinSybase Türkiye
 

Similar to Find Red Hat Container Images and Metadata (20)

Implementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud PlatformsImplementing Secure DevOps on Public Cloud Platforms
Implementing Secure DevOps on Public Cloud Platforms
 
Fundamentals of software development
Fundamentals of software developmentFundamentals of software development
Fundamentals of software development
 
Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)Exercises portfolio-Digital Curation Tools (IS40620)
Exercises portfolio-Digital Curation Tools (IS40620)
 
香港六合彩
香港六合彩香港六合彩
香港六合彩
 
Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019Office Add-ins developer community call-July 2019
Office Add-ins developer community call-July 2019
 
2011 NASA Open Source Summit - Forge.mil
2011 NASA Open Source Summit - Forge.mil2011 NASA Open Source Summit - Forge.mil
2011 NASA Open Source Summit - Forge.mil
 
4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager Strategy4 Outcomes of an Advanced Repo Manager Strategy
4 Outcomes of an Advanced Repo Manager Strategy
 
ESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPXESG Lab Report - Catalogic Software DPX
ESG Lab Report - Catalogic Software DPX
 
Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011Digital Asset Management Forum Chicago 2011
Digital Asset Management Forum Chicago 2011
 
How Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT AnalyticsHow Hewlett Packard Enterprise Gets Real with IoT Analytics
How Hewlett Packard Enterprise Gets Real with IoT Analytics
 
Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018Microsoft Graph community call-October 2018
Microsoft Graph community call-October 2018
 
Power Platform Governance
Power Platform GovernancePower Platform Governance
Power Platform Governance
 
ICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology StackICONIQ Analytics: The Modern Developer Technology Stack
ICONIQ Analytics: The Modern Developer Technology Stack
 
Owasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing masterOwasp Summit - Wednesday evening briefing master
Owasp Summit - Wednesday evening briefing master
 
Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0Ray flow release notes webconsole_ 1.9.0_0
Ray flow release notes webconsole_ 1.9.0_0
 
Cm24585587
Cm24585587Cm24585587
Cm24585587
 
Choosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdfChoosing the Right Framework for Your Web Development Project.pdf
Choosing the Right Framework for Your Web Development Project.pdf
 
Ramesh Selenium
Ramesh SeleniumRamesh Selenium
Ramesh Selenium
 
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BIAugmentation, Collaboration, Governance: Defining the Future of Self-Service BI
Augmentation, Collaboration, Governance: Defining the Future of Self-Service BI
 
Sybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs ErwinSybase PowerDesigner Vs Erwin
Sybase PowerDesigner Vs Erwin
 

Recently uploaded

Zer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdfZer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdfmaor17
 
Introduction to Firebase Workshop Slides
Introduction to Firebase Workshop SlidesIntroduction to Firebase Workshop Slides
Introduction to Firebase Workshop Slidesvaideheekore1
 
Osi security architecture in network.pptx
Osi security architecture in network.pptxOsi security architecture in network.pptx
Osi security architecture in network.pptxVinzoCenzo
 
Simplifying Microservices & Apps - The art of effortless development - Meetup...
Simplifying Microservices & Apps - The art of effortless development - Meetup...Simplifying Microservices & Apps - The art of effortless development - Meetup...
Simplifying Microservices & Apps - The art of effortless development - Meetup...Rob Geurden
 
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...OnePlan Solutions
 
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...OnePlan Solutions
 
Ronisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited CatalogueRonisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited Catalogueitservices996
 
Leveraging AI for Mobile App Testing on Real Devices | Applitools + Kobiton
Leveraging AI for Mobile App Testing on Real Devices | Applitools + KobitonLeveraging AI for Mobile App Testing on Real Devices | Applitools + Kobiton
Leveraging AI for Mobile App Testing on Real Devices | Applitools + KobitonApplitools
 
SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?Alexandre Beguel
 
Data modeling 101 - Basics - Software Domain
Data modeling 101 - Basics - Software DomainData modeling 101 - Basics - Software Domain
Data modeling 101 - Basics - Software DomainAbdul Ahad
 
Strategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsStrategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsJean Silva
 
Keeping your build tool updated in a multi repository world
Keeping your build tool updated in a multi repository worldKeeping your build tool updated in a multi repository world
Keeping your build tool updated in a multi repository worldRoberto Pérez Alcolea
 
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdf
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdfPros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdf
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdfkalichargn70th171
 
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4j
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4jGraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4j
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4jNeo4j
 
Large Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and RepairLarge Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and RepairLionel Briand
 
Copilot para Microsoft 365 y Power Platform Copilot
Copilot para Microsoft 365 y Power Platform CopilotCopilot para Microsoft 365 y Power Platform Copilot
Copilot para Microsoft 365 y Power Platform CopilotEdgard Alejos
 
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdf
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdfEnhancing Supply Chain Visibility with Cargo Cloud Solutions.pdf
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdfRTS corp
 
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics
 
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxThe Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxRTS corp
 
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxUI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxAndreas Kunz
 

Recently uploaded (20)

Zer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdfZer0con 2024 final share short version.pdf
Zer0con 2024 final share short version.pdf
 
Introduction to Firebase Workshop Slides
Introduction to Firebase Workshop SlidesIntroduction to Firebase Workshop Slides
Introduction to Firebase Workshop Slides
 
Osi security architecture in network.pptx
Osi security architecture in network.pptxOsi security architecture in network.pptx
Osi security architecture in network.pptx
 
Simplifying Microservices & Apps - The art of effortless development - Meetup...
Simplifying Microservices & Apps - The art of effortless development - Meetup...Simplifying Microservices & Apps - The art of effortless development - Meetup...
Simplifying Microservices & Apps - The art of effortless development - Meetup...
 
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...
Revolutionizing the Digital Transformation Office - Leveraging OnePlan’s AI a...
 
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...
Tech Tuesday Slides - Introduction to Project Management with OnePlan's Work ...
 
Ronisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited CatalogueRonisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited Catalogue
 
Leveraging AI for Mobile App Testing on Real Devices | Applitools + Kobiton
Leveraging AI for Mobile App Testing on Real Devices | Applitools + KobitonLeveraging AI for Mobile App Testing on Real Devices | Applitools + Kobiton
Leveraging AI for Mobile App Testing on Real Devices | Applitools + Kobiton
 
SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?
 
Data modeling 101 - Basics - Software Domain
Data modeling 101 - Basics - Software DomainData modeling 101 - Basics - Software Domain
Data modeling 101 - Basics - Software Domain
 
Strategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsStrategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero results
 
Keeping your build tool updated in a multi repository world
Keeping your build tool updated in a multi repository worldKeeping your build tool updated in a multi repository world
Keeping your build tool updated in a multi repository world
 
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdf
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdfPros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdf
Pros and Cons of Selenium In Automation Testing_ A Comprehensive Assessment.pdf
 
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4j
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4jGraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4j
GraphSummit Madrid - Product Vision and Roadmap - Luis Salvador Neo4j
 
Large Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and RepairLarge Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and Repair
 
Copilot para Microsoft 365 y Power Platform Copilot
Copilot para Microsoft 365 y Power Platform CopilotCopilot para Microsoft 365 y Power Platform Copilot
Copilot para Microsoft 365 y Power Platform Copilot
 
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdf
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdfEnhancing Supply Chain Visibility with Cargo Cloud Solutions.pdf
Enhancing Supply Chain Visibility with Cargo Cloud Solutions.pdf
 
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
 
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxThe Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
 
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxUI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
 

Find Red Hat Container Images and Metadata

  • 1. Red Hat Container Catalog Consuming Container Images from Red Hat and its Ecosystem Dirk Herrmann Product Owner Container Catalog May 2nd 2017
  • 2. The Value & New Challenges It’s quick and easy to pull a Linux container image from a public registry and get started. In fact, too easy. There can be an explosion of different distributions, architectures, performance and security characteristics in different images.
  • 3. Red Hat Registry Stats ● 227 repositories ● 2,169 images ● 1+ TB storage Red Hat Security Statistics 2016 ● 97 critical RHSA ● 286 important RHSA ● 100% fixed in <1d * ● Cross-team effort of 10 teams across 4 organizations ● Design driven approach focusing on end customer user experience Red Hat Customer Portal Stats 2016 ● 13,100,00 visitors ● 2,400,000 searches ● 108,300,000 views ● Container Health Index ● Extensive Image Metadata ● Image Documentation ● Image Advisories * 100% of critical security flaws in RHEL have been fixed in less than one day: https://access.redhat.com/blogs/766093/posts/2957221
  • 4. Vision Our vision is to help developers, architects, and IT operations realize the full potential of containers by transforming the way container-based applications are built, delivered, and consumed Mission Our mission is to provide customers and partners with the best experience when delivering and consuming container-based applications. This includes the right information and guidance to make intelligent decisions about which container images to consume Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain
  • 5. Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to explore what’s inside the Red Hat Container Catalog I want to search for a product and see all images belonging to it Joe Architect I‘m searching for a database container image I’m searching for Red Hat Enterprise Linux base image Jane Developer
  • 6. use our explore page to browse most relevant products and image categories Base, Builder and Application Images app categories such as database, programming language, logging popular Red Hat and Ecosystem products
  • 7. I’m looking for a base image, what are my options? use the Base Images filter on search page to find our Red Hat base images or use Base Images tile on explore page Jane Developer
  • 8. Search results with key data Type-ahead contains products, repositories and app categories Filter facets for multiple characteristics You can search for: ● Images / Repos ● Products ● Image ID ● Advisory ID ● Categories ● Keywords ● etc.
  • 9. Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to see the key characteristics of an image. Is there documentation available around an image? Joe Architect What are the environment variables defined inside the image? I would like to learn how this images has been built. Jane Developer
  • 10. additional tabs for consumption guidance, further technical details, surrounding documentation and tag index overview page shows most relevant repository and latest image version data
  • 11. Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to learn more how to consume and use this image. Do I need a subscription or license to pull it? Joe Architect I want to pull this image, what do I need to do? I’m using Red Hat Satellite 6, how can I sync the repository? Jane Developer
  • 14. Explore & Search1 2 3Evaluate & Select Consume & Distribute 4 Use & Maintain I want to see which updates are applicable to an image used by us I want to see an actionable result for applicable security updates Carl Security I want to get a list of all images associated with an advisory ID I want to see an aggregated and simple freshness description Jane Developer
  • 15. Get the image ID using CLI or registry UI1 2 3 How can I get more details around an image I’m using?Jane Developer Use the container catalog search to find the image Select the right image version and explore details
  • 16. Image advisories shown for each image version Search for image advisory ID shows affected images
  • 17.
  • 18. Leveraging Red Hat security data (advisories) for RPMs and images Actionable scan results (RPM, Image) Developed as a cross-team effort leveraging Red Hat’s Security expertise Single item status (grade A-F) as an aggregated indicator of container health Red Hat Registry Stats ● 227 repositories ● 2,169 images ● 542,525 RPMs Red Hat Security Statistics 2016 ● 3134 advisories ● 5075 unique CVEs ● 2016: 97 crit RHSA images are static content bundles security issues emerge frequently but age of the image unapplied updates health index indicators
  • 19. list of all image versions inside this repository Container Health Index history key version attributes
  • 20. What is the associated risk with the content inside the image? Container Health Index based on applicable security updates and its age vulnerabilities by advisory severity Carl Security warning if non-current image version privilege requirements
  • 21. How can I get rid of those vulnerabilities ? Red Hat advisory severity newer image version which contains fix Carl Security content advisory which contains fix CVE ID
  • 22. What’s next? Upcoming features of future Red Hat Container Catalog releases ● Ecosystem content incl. Red Hat Certified and OpenShift Primed ● Additional acquire paths, image usage documentation ● OpenShift on-premise / Online enhancements ● Subscribe to notifications for products, images and categories for new images, image versions, advisories, freshness grade changes ● Subscriptions / licenses, support policies, FOSS license compliance You have feedback? An idea or feature request? Let’s meet at our User Experience Design booth. Partner Pavilion Exhibit Hall A Try it out: https://access.redhat.com/containers