Purging container images from Azure Container Registry

Purging container images from Azure Container Registry

Keeping container registries clean and neat is not always an easy task. We have fairly agile release processes, and sometimes we release many images, several times per day across dev- and production environments. Microsoft recently introduced a neat way to automatically purge images based on filters, directly from the Azure CLI. Use casesI saw an immense growth in the Azure Container Registry size. Tags, experimental features, legacy releases, and more - everything we ever pushed to ACR is just sitting there. Most of it is doing nothing. Seeing this, I created a set of utility scripts that could help me…

Read More

Create a custom Azure Security Center recommendation with Azure Policy

Create a custom Azure Security Center recommendation with Azure Policy

In Azure Security Center you get a lot of built-in recommendations based on various compliance- and security controls. These are based on industry standards and include things like Azure CIS, PCI DSS, SOC TSP, ISO 27001, and more. However, many organizations have different requirements than the defaults, and sometimes want to introduce additional or modified checks. With Azure Security Center we get the capability to use custom recommendations together with Azure Policy, where we now can define our corporate policies and roll them out as recommendations in ASC. A great way to tailor the experience according to our use cases.…

Read More

Understanding Azure Policies with Visual Studio Code

Understanding Azure Policies with Visual Studio Code

I did not know about this extension until recently. It is currently in preview, and it is supposed to simplify authoring of policies by enabling alias property look-up inline with the resource or policy definition. I like the idea of drafting policies in Visual Studio Code, especially now that I can look at my existing policy definitions directly from within the tool. Let's take that for a spin to see if we check out our Azure policies. Installing the Azure Policy extensionThe extension is available on the Visual Studio Code marketplace, and can be found on the following URL: https:…

Read More

Close You've successfully subscribed to Tobias Zimmergren's thoughts on tech.
Close Great! You've successfully signed up.
Close Welcome back! You've successfully signed in.
Close Success! Your account is fully activated, you now have access to all content.