Executable tutorial: Building a secure CI/CD for Containers with Chainguard (#2899)

Ferran32 · web-flow · commit 78c8af64b75f · 2025-10-06T11:00:49.000+02:00
* leo3-ferran demo proposal * Feedback on Demo: Blue Green Deployment * Revert "Merge branch 'KTH:2025' into 2025" This reverts commit f14a3dd, reversing changes made to c6e0794. * delete Feedback document * Reapply "Merge branch 'KTH:2025' into 2025" This reverts commit 37c4e3c. * OPA-focused demo proposal * Add correct directory location for demo * Delete Week 6 demo proposal * Add Presentation Proposal * Add Presentation Proposal * Add executable tutorial proposal
diff --git a/contributions/executable-tutorial/valganon-solanes/README.md b/contributions/executable-tutorial/valganon-solanes/README.md
@@ -0,0 +1,36 @@
+# Assignment Proposal
+
+## Title
+
+Building a secure CI/CD for Containers with Chainguard
+
+## Names and KTH ID
+
+  - Miguel Valgañon (valganon@kth.se)
+  - Ferran Solanes (solanes@kth.se)
+
+## Deadline
+
+- Task 3
+
+## Category
+
+- Executable tutorial
+
+## Description
+
+In this tutorial, we will use Killercoda to build a small application, containerize it with Docker, and then integrate Chainguard in the CI/CD to scan the resulting image. If Chainguard deems the image insecure, the pipeline will fail, and therefore the insecure container will not be deployed. This ensures that only secure, and signed images are deployed in a Kubernetes cluster.
+
+At the end of the tutorial, the user should be able to deploy a CI/CD pipeline, which takes security into account using Chainguard, as well as be familiar with the Kubernetes environment.
+
+Steps of the tutorial:
+1- Set up environment; Docker, Chainguard, Kubernetes
+2- Create the CI/CD (With Jenkins)
+3- Develop a Simple application
+4- Containerize the application with Docker
+5- Run Pipeline to check the container for vulnerabilities. The container will be deployed if Chainguard deems it secure.
+
+**Relevance**
+
+This tutorial is relevant to this course, since it is a crucial part of the DevOps lifecycle, and more specifically to the DevSecOps practices. It is a mix of the topics studied on Weeks 2, 3 and 6. By incorporating Chainguard into CI/CD workflows, teams ensure that only verified, vulnerability-free images reach deployment, reducing risk and improving reliablility.
+
