Running a rootless container in a few lines of Go code with just linux syscalls
Runs as validating admission controller to verify integrity of images
Improving the security audit logging in Harbor using OpenResty & change of architectural design
Kubernetes Admission Controller Webhook Demo