The presentation discusses the challenges of producing software bills of materials (S-BOMs) and the use of gatekeeper and external data to enforce policies in Kubernetes clusters.
- Producing S-BOMs for Windows is a complex task that requires new tools and frameworks.
- Automation is necessary to make S-BOMs useful and enforce policies in clusters.
- Gatekeeper, based on Open Policy Agent, can be used with external data providers to enforce policies in Kubernetes clusters.
- OCI 1.1's refers API allows for the association of S-BOMs and signatures with images in registries.