Skip to content
View mchmarny's full-sized avatar
251 followers · 9 following

Achievements

Achievement: QuickdrawAchievement: YOLOAchievement: Pull Sharkx3Achievement: Arctic Code Vault ContributorAchievement: Starstruckx4

Achievements

Achievement: QuickdrawAchievement: YOLOAchievement: Pull Sharkx3Achievement: Arctic Code Vault ContributorAchievement: Starstruckx4

Highlights

Organizations

@knative @tektoncd @dapr

Block or report mchmarny

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mchmarny/README.md

My name is Mark Chmarny and this is my personal development space. I usually share my longer thoughts on my blog, and the shorter ones on @mchmarny on Twitter or Mastodon. Hope to see you there.

Here are few of my recent projects:

  • grunner self-hosted GitHub Actions runner on GCP using GCE (MIGs) with custom image and configurable VM lifesycle
  • vimp compare data from multiple vulnerability scanners
  • s3cme go app template repo with image build/publish pipelines, SBOM, SLSA provenance, OIDC, KMS and Registry
  • disco utility for bulk image, license, package, and vulnerability discovery in containerize workloads on GCP
  • sds demo bootstraps CI/CD pipeline on GCP with image provenance, BinAuthZ policies, GKE attestation checks
  • artomator automates Software Bill of Materials (SBOM) creation with Binary Authorization attestation
  • repo activity monitoring CLI to get aggregated view into PR, issue, and comment events with author's company affiliation
  • reproducible OpenID Connect for GCP to configure Github Workflow using Terraform to push images to GCR
  • multi-region REST service to bootstrap a fully functional service on GCP using Terraform with a developer release pipeline
  • kubernetes namespace operator applies custom deployments when any namespace in your cluster is labeled with a specific keyword

My github stats

Pinned Loading

  1. knative-demos knative-demos Public

    Collection of Knative demos

    Shell 68 22

  2. github-activity-counter github-activity-counter Public

    Cloud Run service for GitHub event Webhook to monitor repo or org activity in real-time in Stackdriver and analyze activity through ad-hoc SQL queries in BigQuery

    Go 45 2

  3. sds-demo sds-demo Public

    Software Delivery Shield demo illustrating end-to-end solution for secure software supply chain

    Shell 4 14

  4. s3cme s3cme Public template

    Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance

    Go 93 10

  5. vimp vimp Public

    Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.

    Go 59 4

  6. grunner grunner Public template

    Self-hosted GitHub Actions runner on GCP using GCE.

    HCL 35