Episode 96 - The Secret Origin of Chainguard with Kim Lewandowski
The POPCAST with Dan POP
English - December 08, 2021 18:30 - 39 minutes - 36.1 MB - ★★★★★ - 9 ratingsTechnology k8s cncf danpop devops kubecon dan papandrea agiledevelopment developer kubernetes software Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
In this episode Kim Lewandowski talks about her journey, the secret origin of Chainguard.dev, and an EXCLUSIVE ANNOUNCEMENT!
Kim is an engineer turned product manager. She started her career in the security space working for Lawrence Livermore Labs, and most recently worked for Google. She launched a number of Cloud enterprise products and created popular open source projects (many with Dan Lorence) including Tekton, Security Scorecards, and SLSA. Kim also sits on the boards of the Continuous Delivery Foundation and Open Source Security Foundation.
Timeline/Topic
00:00 - Opening
00:14 - Introduction to Kim Lewandowski aka Agent Pico (Chainguard.dev)
00:54 - Kim's Journey from the finger lakes (Upstate NY) to Google and Upstate NY Trivia!
13:35 - Working at Google
15:34 - What is Product Management done right?
19:57 - Software Supply Chain Security - Why is it such a hot topic ?
25:53 - The Secret Origin of Chainguard.dev and the Porsche story
30:46 - Chainguard.dev's BIG ANNOUNCEMENT!
31:54 - Behind the scenes of Operation SLSA
36:08 - Where do you see Chainguard.dev in the future?
37:29 - What work is Kim most proud of
Episode Links
Trevor's talk from software supply chain con (Kubecon LA) https://youtu.be/1-tMRxqMwTQ
Operation SLSA - https://youtu.be/S\_MXbt0p\_pg
Craig McLuckie on Product Management - https://www.youtube.com/watch?v=BdziTqhrGeo&t=451s
POPCAST SHOW DETAILS (SUBSCRIBE!)
YouTube: https://bit.ly/3xgmmCj
Audio Podcast (Apple, Spotify, and others): http://bit.ly/35MXfte
Follow us on (Twitter): https://twitter.com/PopcastPop
Follow us on (Linkedin): https://www.linkedin.com/company/the-popcast-with-danpop
Support the show by checking out our sponsors below!
***Teleport***
Teleport allows engineers and security professionals to unify access for SSH servers, Kubernetes clusters, web applications, and databases across all environments. You can download Teleport at https://goteleport.com/popcast
***SUSE Rancher Government Services***
SUSE Rancher Government Solutions (RGS) is a leader in Linux and Kubernetes management for federal and U.S. government entities. RGS leverages SUSE’s Linux expertise and Rancher’s Kubernetes excellence to provide secure open source solutions that adhere to federal compliance regulations supporting SAP HANA, HPC, cloud, edge computing and container management
***Styra***
Learn how to operationalize Open Policy Agent at scale with Styra: https://hubs.ly/H0Pnkm20
***COCKROACH LABS***
What if you could build like Big Tech? Use the same powerful infrastructure that they spent engineering centuries building...It’s actually possible now with CockroachDB.
The founders have spent the last eight years creating a cloud-native, distributed SQL database that provides the consistency, ultra-resilience, data locality, and massive scale for modern cloud applications - tech that was once only available to the likes of Google, Facebook and Netflix.
Check them out and get started for free at https://cockroachlabs.com/popcast
***GITLAB***
GitLab is The DevOps Platform. Deliver software faster with better security and collaboration in a single platform. Try GitLab today. https://about.gitlab.com/free-trial/
***Cisco***
Check out Cisco's super informative blog https://ciscotechblog.com/
***CIVO***
Civo is an alternative to the big hyperscale cloud providers.
They've launched world's first managed Kubernetes service powered by K3s. With sub 90 second cluster launch times, a simplified Kubernetes experience,and predictable billing, Civo is on a mission to create a better developer experience.
Get $250 free credit to get started. Sign up today at https://civo.com/popcast