Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Securing CI/CD Systems Through eBPF (recap)
Search
whywaita
PRO
November 24, 2022
Technology
1
900
Securing CI/CD Systems Through eBPF (recap)
Talked by
https://k8sjp.connpass.com/event/264501/
whywaita
PRO
November 24, 2022
Tweet
Share
More Decks by whywaita
See All by whywaita
self-hosted runnerと actions/cache の噛み合わせが悪かった件 #githubactionsmeetup
whywaita
PRO
3
1.6k
過去事例から見るモニタリングの大切さ #techfeed_live
whywaita
PRO
2
1.1k
バリエーションで差をつける。myshoesの新たな挑戦 #cicd_test_night
whywaita
PRO
0
5.3k
ディスクレスハイパーバイザ 〜運用しやすいクラウドのために〜
whywaita
PRO
0
130
GitHub Actions runner基盤におけるオンプレミスマルチテナントアプリケーションの運用 #CADC2022
whywaita
PRO
0
420
Development myshoes and Provide Cycloud-hosted runner -- GitHub Actions with your shoes. #cndjp
whywaita
PRO
0
39
イベント企画運営の経験と実際 / The history of organizing events by me
whywaita
PRO
0
15
作って(壊して?)学ぶインターネットのしくみ サイバーエージェントの実験用ASの紹介 / Introduce experimental AS in CyberAgent Internet Seminer
whywaita
PRO
0
51
CyberAgent における OSS の CI/CD 基盤開発 myshoes #CICD2021
whywaita
PRO
0
43
Other Decks in Technology
See All in Technology
地理情報とAPIのトレンド
nagix
0
160
Classmethod Odyssey 登壇資料
yamahiro
0
390
AWS IAMのアンチパターン/AWSが考える最低権限実現へのアプローチ概略(JAWS-UG朝会#59資料改修20分版)
htan
0
330
[I/O Extended Android 2024] What`s new in Android 2024
kyeongwan
0
220
セキュリティ研修 Day1【MIXI 24新卒技術研修】
mixi_engineers
PRO
0
150
20240725 LLMによるDXのビジョンと、今何からやるべきか @Azure OpenAI Service Dev Day
nrryuya
3
1.1k
AWSで”最小権限の原則”を実現するための考え方 /20240722-ssmjp-aws-least-privilege
opelab
10
4.3k
Matterport を使ってクラスメソッド各拠点のバーチャルオフィスツアーを作成してみた
wakatsuki
0
160
How to Think Like a Performance Engineer
csswizardry
4
590
Luupの開発組織におけるインシデントマネジメントの変遷 ver.RoadtoSRENEXT2024
grimoh
1
270
dxd2024-生成AIに振り回された3か月間の成功と失敗/dxd2024-link-and-motivation
lmi
2
260
MySQLのロックの種類とその競合
yoku0825
6
1.6k
Featured
See All Featured
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
105
6.8k
Side Projects
sachag
451
42k
The Pragmatic Product Professional
lauravandoore
29
6.1k
GraphQLとの向き合い方2022年版
quramy
36
13k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
277
13k
The Cost Of JavaScript in 2023
addyosmani
31
4.7k
jQuery: Nuts, Bolts and Bling
dougneiner
61
7.4k
Building a Modern Day E-commerce SEO Strategy
aleyda
25
6.7k
Fireside Chat
paigeccino
25
2.8k
Visualization
eitanlees
139
14k
How to Ace a Technical Interview
jacobian
274
23k
Large-scale JavaScript Application Architecture
addyosmani
506
110k
Transcript
4FDVSJOH$*$%4ZTUFNT 5ISPVHIF#1' ,VCFSOFUFT.FFUVQ5PLZP ,VCF$PO/"3FDBQ $ZCFS"HFOU *ODத ݐొ XIZXBJUB
த ݐొ XIZXBJUB $MPVE.BLFSBU$ZCFS"HFOU *OD ϓϥΠϕʔτΫϥυ *BB4
ϚωʔδυαʔϏε։ൃ TFMGIPTUFESVOOFSJO(JU)VC"DUJPOT XIZXBJUBNZTIPFT044EFWFMPQFS झຯࣗαʔό ,T!IPNF ϙʔΧʔ ,VCF$POॳࢀઓ ॳւ֎ ೖࠃΠϯλϏϡʔͰҰഊ 5IBOLZPVBNTZ😭
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1'
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • CZ"MFY*MHBZFW $ZDPEF ◦ IUUQTDZDPEFDPN • IUUQTTDIFEDP"V[ • IUUQTXXXZPVUVCFDPNXBUDI
WQD#(3'W4SW : • $*$%ΛηΩϡΞʹߦ͏ͨΊʹF#1'Λར༻͢ΔࢼΈ
• &YUFOEFE#FSLFMFZ1BDLFU'JMUFS • -JOVY,FSOFMͷ4BOECPYͰίʔυΛ࣮ߦ͢Δ ◦ ϦίϯύΠϧෆཁ Ͱ ҆શ ͔ͭ ߴ
• /FUXPSL 0CTFSWBCJMJUZͷར༻ࣄྫ͕ଟΊ ◦ ,VCFSOFUFT$/* .POJUPSJOH"HFOU લఏࣝF#1'
• &YUFOEFE#FSLFMFZ1BDLFU'JMUFS • -JOVY,FSOFMͷ4BOECPYͰίʔυΛ࣮ߦ͢Δ ◦ ϦίϯύΠϧෆཁ Ͱ ҆શ ͔ͭ ߴ
• /FUXPSL 0CTFSWBCJMJUZͷར༻ࣄྫ͕ଟΊ ◦ ,VCFSOFUFT$/*$JMJVN ◦ .POJUPSJOH"HFOUEBUBEPHBHFOU FCQG@FYQPSUFS લఏࣝF#1'
IUUQTUXJUUFSDPNHSBGBOBTUBUVT લఏࣝF#1'
IUUQTHSBGBOBDPNCMPHHSBGBOBBOEDJMJVNEFFQFCQGQPXFSFEPCTFSWBCJMJUZGPSLVCFSOFUFTBOEDMPVE OBUJWFJOGSBTUSVDUVSF લఏࣝF#1'
ຊ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • $*$%ʹ͓͚ΔηΩϡϦςΟࣄҊ ◦ 4PMBS8JOETॺ໊͖ϑΝΠϧͷॻ ◦ $PEF$PWCBTIJOTUBMMFSͷॻ ◦ /1. 1Z1*αϓϥΠνΣʔϯΞλοΫ
• $*$%πʔϧ ͷηΩϡϦςΟରࡦ͍͠ ◦ ڧݖݶ شൃ͢Δڥ Մ؍ଌੑ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • ఏҊ$*$%F#1'ϕʔεͳ"HFOUͷಋೖ • XIZF#1' ◦ ؆୯ʹՄ؍ଌੑͱηΩϡϦςΟχʔζΛߴΊΒΕΔ ◦ ࠷৽ΧʔωϧͰಈ࡞͢Δ ◦
ڧྗͳίϛϡχςΟͱπʔϧ • $JMJVN5FUSBHPOͷ࠾༻
• F#1'CBTFE 4FDVSJUZ0CTFSWBCJMJUZ ηΩϡϦςΟͷՄ؍ଌੑ BOE 3VOUJNF&OGPSDFNFOU ϦΞϧλΠϜ࣮ߦ੍ޚ • ੨ࢁ͞ΜʹΑΔຊޠهࣄ $JMJVN1SPKFDU͔Βެ։ʂ
F#1'Λ༻͍ͯηΩϡϦςΟͷՄ؍ଌੑΛͨΒ͢5FUSBHPOcHJIZPKQ $JMJVN5FUSBHPO IUUQTHJUIVCDPNDJMJVNUFUSBHPO ͔Θ͍͍ˠ
$JMJVN5FUSBHPO
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • $*$%γεςϜʹ$JMJVN5FUSBHPOΛಋೖ ◦ $*$%γεςϜʹ͓͚Δzಈ࡞Λ؍ଌ͢Δ ◦ ϓϩηε ίωΫγϣϯ ϑΝΠϧ *0ใ
• 5FUSBHPO࠾༻ཧ༝ ◦ LQSPCFΛ࢝Ίͱͯ͠ଟ͘ͷσʔλ͕औಘՄೳ ◦ LTҎ֎ͷڥͰಈ࡞͢Δ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1'
1P$ͷ࣮༰ʹ͍ͭͯ • Ϗϧυڥͷ0CTFSWBMJCJUZ ◦ ϓϩηε ଓઌυϝΠϯ *1 • ιʔείʔυͷશੑ֬อ ◦
HPϑΝΠϧͷॻΛࢹ • ௨৴ઌͷ੍ޚ ◦ ڐՄͯ͠ͳ͍*1υϝΠϯͷଓՄ൱ • (JU)VC"DUJPOT্Ͱಈ࡞͢ΔΑ͏ߏஙࡁ
1P$ͷ࣮༰ʹ͍ͭͯ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' HJUDMPOF࣌ͷ HJUIVCDPNͷଓ UDQ@DPOOFDU ΛUSBDJOH͢Δ͜ͱͰ؍ଌޭ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' TFUVQHPͰ࣮ߦ͞Ε͍ͯΔ ϓϩηεใͷ؍ଌޭ
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • σϞ ◦ Ϗϧυதͷ HPϑΝΠϧͷॻ 4*(,*-- ◦ ڐՄ͍ͯ͠ͳ͍*1ͷ௨৴ 4*(,*--
◦ ڐՄ͍ͯ͠ͳ͍ϓϩηεͷੜ 4*(,*--
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • σϞ ◦ Ϗϧυதͷ HPϑΝΠϧͷॻ 4*(,*-- ◦ ڐՄ͍ͯ͠ͳ͍*1ͷ௨৴ 4*(,*--
◦ ڐՄ͍ͯ͠ͳ͍ϓϩηεͷੜ 4*(,*--
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1'
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' • σϞ ◦ Ϗϧυதͷ HPϑΝΠϧͷॻ 4*(,*-- ◦ ڐՄ͍ͯ͠ͳ͍*1ͷ௨৴ 4*(,*--
◦ ڐՄ͍ͯ͠ͳ͍ϓϩηεͷੜ 4*(,*--
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1' (JU)VC"DUJPOT্ͷઃఆϑΝΠϧ͔Β $JMJVN5FUSBHPOͷઃఆΛੜ
·ͱΊ • F#1' $JMJVN5FUSBHPOύϫϑϧͳςΫϊϩδʔ • $*$%F#1'ʹΑͬͯ͞ΒʹηΩϡΞʹͳΔ • ࠓޙ1P$Ͱͬͨ"HFOUΛ044Խ༧ఆ ◦ ͞Εͯ·ͨ͠
IUUQTHJUIVCDPN$ZDPEF-BCTFCQGBHFOUBDUJPO • $POUSJCVUFͬͯΔΑʂ
ײ • 5FUSBHPOͷڧྗ͞Λेೋʹ׆͔͢ൃද ◦ 0CTFSWBCJMJUZ 3VOUJNF&OGPSDFNFOU ◦ ϕετϑΟοτ • ʮؾΛ͚ͭΔʯҎ্ͷ͜ͱ͕ग़དྷΔΑ͏ʹ
◦ $*$%ͷΑ͏ʹʮॏཁ͚ͩͲׂ͕͔Εʹ͍͘ʯ ಛʹ͜ͷΑ͏ͳऔΓΈ͕ඞཁʹͳΓͦ͏
αΠόʔΤʔδΣϯτͰͷऔΓΈ ϓϥΠϕʔτΫϥυͰͷ(JU)VC"DUJPOTج൫Λ ։ൃɾӡ༻த IUUQTXXXTMJEFTIBSFOFUXIZXBJUBEFWFMPQNFOUNZTIPFTBOEQSPWJEFDZDMPVEIPTUFESVOOFSHJUIVCBDUJPOT XJUIZPVSTIPFT
αΠόʔΤʔδΣϯτͰͷऔΓΈ IUUQTXXXTMJEFTIBSFOFUXIZXBJUBEFWFMPQNFOUNZTIPFTBOEQSPWJEFDZDMPVEIPTUFESVOOFSHJUIVCBDUJPOT XJUIZPVSTIPFT ಈతͳTFMGIPTUFESVOOFS XIZXBJUBNZTIPFT
4FDVSJOH$*$%4ZTUFNT5ISPVHIF#1'
αΠόʔΤʔδΣϯτͰͷऔΓΈ IUUQTXXXTMJEFTIBSFOFUXIZXBJUBEFWFMPQNFOUNZTIPFTBOEQSPWJEFDZDMPVEIPTUFESVOOFSHJUIVCBDUJPOT XJUIZPVSTIPFT ಈతͳ TFMGIPTUFESVOOFS XIZXBJUBNZTIPFT .BOBHFE 1P$"HFOU4FSWFS
Q?