This repo demostrates a security focused CI/CD pipeline for GKE with Google Cloud tools Cloud Build, Binary Authorization, Artifact Registry, Container Analysis, and Google Cloud Deploy. The example app is a simple containerized Maven example app with Kustomize overlays for Kubernetes manifest rendering!
This demo relies on you making git check-ins to simulate a developer workflow. So you'll need your own copy of these files in your own repo. To do that in Github use, fork this repo on Github
Once you've forked, start the tutorial below.
The following tutorial walks you through all the setup needed to configure Google Cloud services needed to run this demo and then steps you through the demo itself. Clicking this button provisions a Cloud Shell Editor and launches an interactive tutorial which steps you through the process. Google Cloud account and project required.
If you don't want to run the tutorial in Cloud Shell, you can view the md file here although you'll see some artifacts.