►
From YouTube: StackRox Community Meeting #4 - 2022-07-12
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
B
A
A
Okay,
well,
if,
if
you're
ever
looking
for
the
links
they
are
in
the
slack
channel
on
the
cncf,
I
I
pinned
all
the
notes
to
the
top.
So
we
have
that
and
I'll
update
as
well
next
community
meeting
and
the
little
tagline
of
summa
tsu
did
that
I
was
like
that's
genius.
That's
awesome,
so
yeah
big
news.
We
have
a
new
release
coming
up,
so
some
of
the
developer
builds
have
been
pushed
to
the
open
source,
repo
and
matthias
and
boaz
we're
lucky.
We
have
a
couple
experts
on.
A
A
B
Sure
so,
for
the
71
release,
we're
doing
something
very
interesting
which
is
acs
or
stack
rocks,
has
two
modes
of
collecting
data
from
nodes
which
are
an
ebpf
module
or
the
a
little
bit
older
one,
which
is
kernel
modules
and
our
collector
team
actually
was
able
to
improve
the
performance
of
ebpf
a
lot.
So
we
decided
to
roll
out
for
new
installations,
the
ebpf
collection
method
as
a
standard,
which
means
this
should
lead
to.
B
I
mean
mostly
important
performance
improvements,
but
it's
also
future
proofing
our
efforts
and
our
data
collection
on
nodes,
because
ebpf
is
a
little
bit
more
flexible
and
easily
more
easily
managed
a
little
bit
more
manageable
in
general.
So
this
is
something
that
I'm
really
looking
forward
for
you.
You
will
still
be
able
to
use
kernel
modules
if
you
want
or
need
to,
but
for
new
installations
it
will
default
to
ebpf
as
a
collection
method.
A
A
C
A
B
Yeah,
so
that
that's
been
a
little
bit
of
a
challenge,
so
our
engineering
team
has
been
working
on
this
because,
as
as
one
might
expect,
a
lot
of
our
developers
nowadays
work
on
m1
max
as
well,
which
means
this
is
also
of
interest
for
our
internal
devs.
I
have
seen
quite
a
bit
of
people
quite
a
bit
of
discussion
in
the
slack
and
generally,
we
are
working
on
this
it.
B
We
don't
exactly
know
when
it's
going
to
when
it's
going
to
be
production
ready,
but
as
far
as
I
know,
one
of
our
devs
was
able
to
to
at
least
have
a
proof
of
concept
arm
build,
so
we're
working
on
it.
If
anyone
is
interested
in
supporting
us
or
or
basically
landing
their
system
for
for
a
little
bit
of
testing
or
something
please
ping
me
on
slack,
I
will
happily
collect.
Could
I
will
happily
connect
you
to
the
developer
on
our
site
that
is
working
on
that
right
now,.
C
A
We
were
just
talking
about
the
new
release,
that's
coming
up
and
some
of
the
new
features
and
speaking
of
which
one
of
the
biggest
ones
is
the
dashboard.
So
yeah
christian's,
weird
seeing
you
and
looks
like
you
change
your
setup,
a
bit
yeah.
I
know
I'm
I'm
I'm
at
my
girlfriend's
house
today.
So
it's
I'm.
I
guess
different
office
today
today,
yeah
well
welcome
back
new
job's,
treating
you
well,
I
hope
mm-hmm
all
right.
C
A
C
C
C
For
flashing
this,
I
don't
know
if
it's
my
baby,
it's
engineering
is
all
over
this.
This
is
just
so
fresh,
so
you
know:
we've
we've
heard
from
from
our
users
saying
the
the
dashboard
could
could
use
some
some
lift
up.
So
this
is
a
facelift.
We
are
introducing
a
number
of
new,
entirely
new
concepts
in
this
dashboard
and
so
yeah.
We
absolutely
want
some
feedback.
C
Clearly
you
can,
you
can
see
the
the
new
look,
look
and
feel
just
cleaner.
It's
it's
pattern
fly,
but
there
are
a
number
of
interesting
things
here.
So,
first
of
all,
the
objective
here
of
of
this
security
dashboard
is
to
get
you
to
in
spending
a
few
seconds
literally
on
a
widget
to
know
where
you
need
to
go.
C
What
do
you
want
to
do
about
them
and
we've
added
a
few
options
to
some
of
these
widgets
there's
a
balance
between
the
time
you
want
to
spend
on
the
widget
itself
to
getting
to
the
action
so
we've
we
tried
to
make
each
one
of
those
widgets
make
that
problem
pop
and
help
you
get
to
where
you
want
in
as
little
time
as
you
can,
but
there's
also
a
few
tweaks
that
you
can
do
to
spend
a
few
more
minutes
on
on
a
widget
to
to
get
more
out
of
it.
So
maybe
we
can
take.
C
C
C
How
your
violations
are
behaving
in
terms
of
categories
now
we
have
out
of
the
box
categories,
we've
seen
people
use
them.
People
have
also
defined
their
own
categories,
which
you
can
still
do
we're
also
coming
up
with
an
update
for
for
how
that's
done,
but
this
allows
you
to
get
a
bit
of
an
insight
as
to
that
behavior
and
to
how
you're
using
categories,
if
you're
using
them
at
all,
if
you
find
them
helpful
again,
that's
that's
here
for
feedback.
C
A
C
You
can
sort
it
two
ways
you
can
sort
by
just
volume
off
how
many
violations
I
have
in
this
category
or
you
can
sort
it
by.
I
only
want
to
see
how
many
critical
violations-
and
I
want
that
category
with
the
most
critical
to
pop
up
so
again,
to
reiterate:
that's
tell
us
what
you
think.
Is
it
too
much
like
do
you?
Do
you
not
want
to
see
it
here,
or
do
you
actually
like
this
direction?
You
want
to
see
more
of
it,
maybe
in
other
widgets
and
maybe
yeah
you.
A
Yeah,
I
that
was
actually
great
and
one
of
the
the
best
parts
that
I
like
about
this
dashboard
is
the
ability
to
click
through.
Now
is
a
lot
easier.
I'm
constantly
on
calls
where
there's
sort
of
a
separation
between
hey.
We
want
to
look
at
what's
happening
at
runtime
in
the
cluster
and
then
there's
a
different
fix,
which
is
what's
happening
at
deploy
time
with
the
developers
right
and
those
kind
of
require
two
different
approaches
when
you're
trying
to
fix
things.
A
So
if
I'm
going
into
the
policy
violations-
and
I
say-
okay-
well-
I
want
to
look
at
severity.
I
want
to
look
at
deploy
time
right.
If
I
click
this,
I
get
brought
into
that
category.
Vulnerability
management
and
there
are
the
top
four
that
are
critical
at
deploy
time
that
are
already
sectioned
off
for
me,
and
then
you
can
start
to
dig
into
it
a
little
bit
more
go
in
and
say:
okay,
there's
the
entity
get
the
deployment
details.
A
I
can
say:
okay,
you
know
that's
the
group
that
I
need
to
go
to
to
rectify
this
situation.
So
with
like
three
clicks,
you've
figured
out,
you
know
what
the
deployment
is,
where
the
information
is
who
to
talk
to
just
the
ability
to
click
through
I'm
a
huge
fan
of
also,
if
I
can
continue
ranting
boaz.
Please
do
I
really
like
the
the
aging
images,
because
I
think
30
days
for
an
aging
image
is
really
quick,
and
so
I
know
for
a
policy.
A
A
The
default
policies
haven't
changed,
but
from
a
high
level
view
you
get
a
good
glimpse
of
basically
how
old
some
of
those
applications
and
that
base
images
or
sorry,
the
total
container
images
which
I'm
also
a
huge
fan
of,
but
yeah,
that's.
Those
are
my
two
things.
I
think
it's
a
lot
just
more
customizable
and
I'm
looking
forward
to
seeing
some
of
the
progress
in
the
future
releases
too.
It's
awesome.
C
C
Ultimately,
this
is
a
long-term
plan.
It's
going
to
take
us
time
to
get
there,
but
ultimately
we
want
to
have
the
dashboard
be
much
more
customizable,
hopefully
entirely
customizable,
that
you
can
pick
and
choose
which
widgets
you
actually
want
in
your
dashboard
and
we're
going
to
drive
more
consistency
in
the
different
parts
of
the
dashboards
of
the
product
that
are
going
to
look
more
and
more
like
this
ease
the
navigation
between
them.
So,
ultimately,
in
our
vision
again
tell
us
what
you
think
about
that
is.
The
top
dashboard
is
no
different
than
other
dashboards.
C
C
B
Speaking
of
feedback
folks
feel
free
to
you
can
use
github
issues
to
to
share
feedback
with
us,
but
you
don't
have
to
you.
Can
you
can
do
it
as
far
informal
as
just
dropping
us
a
slack
message
in
the
in
the
in
the
slack
or
you
can
also
just
write
us
an
email
if
you
like,
so
you
are
not
required
to
use
github
issues
so
choose
whatever
path.
You
like
best
we're
more
or
less
money.
No,
we're
we're.
Definitely
monitoring
all
of
the
paths.
A
C
A
A
A
A
C
C
C
C
B
Take
it
away
so
for
also
for
this
release
we
are
happy
to
basically
or
we
are
now
very
happy
with
the
state
of
the
hand
charts.
So
you
can
now
install
the
open
source
releases
or
release
tags.
Also
through
helm,
charts
the
helm
chart
for
71
will
come
a
little
bit
later,
but
still
it
is
so
I'm
actually
working
on
on
automating
these
right
now.
B
B
A
I
think
he's
in
the
car
so
we'll
we'll
leave
him
just
on
on
the
listening
side,
but
yeah.
So
matthias
you're
saying
we're
looking
for
somebody
basically
to
take
on
the
operator
if
somebody's
interested
please
reach
out,
because
we'll
definitely
you
know,
set
up
a
repository
or
do
what
we
have
to
do
to
make
sure
that
the.
B
A
B
A
Awesome
moving
on
so
from
the
documentation
standpoint
we
just
updated.
The
readme
made
it
a
little
bit
clearer,
a
little
more
condensed
because
there
is
a
lot
of
information
there.
There's
future
discussions
about
trying
to
do
something
like
an
mk
docs,
but
you
know
with
summer
time
and
some
breaks
we're
a
little
strapped
right
now
take
a
look
through
the
readme
once
it
gets,
it'll
probably
get
committed
a
little
later
today.
A
I
would
love
to
get
your
feedback
on
what
works,
but
it
doesn't
we've
basically
broken
it
up
to
you,
know
scripts
the
helm
walk
through
there's
a
limited
resource,
helm
deployment
as
well.
So
it
can
take
you
through
that,
if
you're
resource
constrained,
which
I
think
is
awesome
but
yeah,
let
us
know
what
you
think
and
if
there's
any
issues,
oh
and
as
well
on
the
bottom,
there
is
sort
of
a
recommendations
and
best
practice
for
the
different.
A
B
I
mean
it's,
it's
still
a
little
bit
until
there,
but
we're
basically
planning
on
on
opening
on
on
participating
on
hector
this
year,
which
also
means
we
will
be
adding
a
lot
of
starter
issues,
and
if
anyone
has
an
idea
of
things
that
they
would
like
to
see
feel
free
to
either
let
us
know
or
open
the
issue.
We
are
more
than
happy
to
to
add
these
to
to
october
and,
of
course,
in
general,
open
them
up
for
community
development.
A
B
A
And
that's
from
github
yeah
yeah,
but
if
you
do
that,
I'm
sure
there's,
there's
rockstar
giving
up
coming
in
the
future,
speaking
of
which
I'm
gonna
reach
out
to
everybody
that
we've
talked
to
before
about
being
a
rock
star.
We
finally
got
all
of
the
open
source
swag
in
so
we
got
a
little.
What
are
they
not
koozies
like
coffee,
mug,
nice
ones,
sweaters,
notebooks,
so
I'll
be
reaching
out
to
everybody
that
we
talked
about
before
and
lastly,
you
just
want
to
open
the
floor.
A
A
Yeah!
Oh
that's
put
me
up
to
it
very
nice
and
then
last
thing:
if
there
are
there
no
question
comments
or
concerns.
The
monthly
rockstar
is
going
to
andy
clemenco
for
all
of
his
work
in
the
chat
he
is
on
been
on
top
of
basically
everything
he's
the
speediest
responder.
So
I'm
gonna
send
him
some
some
gear,
and
hopefully
oh
yeah.
If
you
you're
active
in
the
chat,
we'll
have
our
next
monthly
rockstar
in
august,
I
believe
it's
august.
A
Awesome
thanks
dain
and
thanks
everyone
for
joining,
we'll
see
you
in
a
month
august
9th,
and
I
believe
what
we're
going
to
try
to
do
is
move
it
up
an
hour
just
so
that
I
think
a
little
bit
more
of
the
engineering
staff
can
make
it
but
I'll
make
an
announcement
in
the
chat.
If
that
happens,
otherwise
have
a
great
summer
see
you
next
month,
thanks
cheers
everyone.