Tutorials, courses & field notes

Learn to secure what you ship.

Hands-on courses and field notes on Kubernetes, CI/CD pipelines, secrets, and cloud security — beginner to advanced, each with a self-test at the end.

Last publishedJul 3, 2026
~/secopslog — zsh
$ trivy image payments-api:1.4.2
CRITICAL: 0 HIGH: 2 MEDIUM: 7 LOW: 14
$ cosign verify payments-api:1.4.2
✓ verified — signed by ci@secopslog
$ kubectl label ns payments pod-security.kubernetes.io/enforce=restricted
namespace/payments labeled
$
Featured tutorial

Kubernetes network policies: default-deny, keep DNS up

Lock down pod-to-pod traffic with a default-deny NetworkPolicy, then re-allow DNS and the flows your apps actually need.Jul 3, 2026 · 11 minAdvancedkubernetesnetworkpolicysecurityRead the tutorial

Courses

Beginner to advanced tracks per topic — every course ends with a self-test.

View all

Topics

Every post is tagged by tool and layer of the stack.

All topics