Security

Security

Security practices span container security, authentication, and operational security tooling.

Container Security

• CascadeGuard — container security lifecycle platform (primary security product)
• Image Factory — automated image rebuilds when base images update
• Open Secure Images — hardened base images (part of CascadeGuard OSS)

Authentication

• OAuth2 Proxy — Google OAuth for public-facing services via traefik-ingress helm chart
• mTLS — mutual TLS for service-to-service communication (e.g. WinShut)
• Central Secret Store — Kubernetes secrets in central-secret-store namespace

DevSecOps Tooling

• DevSecOps — remote management utilities (WinShut)
• GitHub Actions — CI pipelines with secret management
• ArgoCD — audit trail for all deployments via git history

Related

• CascadeGuard Project
• CascadeGuard OSS
• GitOps