Archodex at KubeCon
Also, give us feedback as part of our soft-public-launch!
It’s been a while since I last posted about Archodex, my DevSecOps project that tells you where your secrets / API keys live and which workloads use them. There have been quite a few updates to Archodex since then!
But first: I’ll be at KubeCon North America next week in Atlanta. Can I buy you a coffee/beer/etc there in exchange for insights on your DevSecOps challenges (and maybe some feedback on Archodex)?
Now, here’s what we’ve been up to since my last post:
My friend Apurva Jantrania has joined the fun! We’re now two ex-AWS Principal Engineers working to solve secrets management and other DevSecOps challenges. Don’t worry, this is still a labor of love with no outside investment, which means we get to focus solely on building the best software we can.
We have a fun new Playground experience. We know you don’t have time or energy set up new services just to figure out what they can do. This short-circuits trying Archodex to a 3-minute interactive demo.
Archodex Playground showing a Secret with multiple issues You can now sign up and start using Archodex! Consider this a soft-public-launch where more of our friends can try it out and help us by providing feedback. We’re not going to be broadcasting about Archodex yet, though feel free to send people our way if we can help them.
We’ve released the source code for all our components as Fair Source. This gives you the right to improve or repair Archodex however you need and allows us to build a sustainable project for the long term. I’m really excited about developing Archodex in the open!
You can now self-host the Archodex service wherever you like. Some folks need their data to remain in their control and/or on their own premises. You can even run the agent in logging-only mode, which works even when completely firewalled off from all networks.
If you’re curious how our agent is able to performantly introspect your API interactions to discover secrets usage, you can take a look at the technical details documentation of our agent (or even check out our source code!). We had to really innovate to solve a bunch of tricky eBPF challenges!
So that’s what we’ve been working on lately. If you’ll be at KubeCon, please reach out!