Brandt Keller, staff software engineer at Defense Unicorns and maintainer of Zarf, discusses how Zarf solves the challenge of packaging, transferring, and deploying software in air-gapped environments that lack internet connectivity. Zarf bundles container images, Helm charts, and other artifacts into a single declarative archive, generates SBOMs on the fly, and introduces security gates to prevent malicious components from entering critical environments. The tool has evolved from a niche single-distribution Kubernetes tool to a distribution-agnostic platform with GitOps integration. Brandt also explains how Zarf's declarative manifest model can reduce the cognitive burden on open source maintainers by consolidating supply chain security tasks (signing, SBOMs) into a single workflow, giving downstream integrators confidence in upstream artifacts.
Sort: