Progress for 20231115

nicholasdille · nicholasdille · commit dac350d022ea · 2023-11-12T13:08:15.000+01:00
diff --git a/000_introduction/02_bio.md b/000_introduction/02_bio.md
@@ -9,21 +9,18 @@
 - <span class="fa-li"><i class="fa fa-globe"></i></span> [Blogger][1] since 2003
 - <span class="fa-li"><i class="fa fa-microphone"></i></span> [Speaker][2] since 2009
 - <span class="fa-li"><i class="fa-brands fa-windows"></i></span> Microsoft MVP Alumni (2010-2023)
-- <span class="fa-li"><i class="fa-brands fa-docker"></i></span> [Docker Captain][4] since 2017
-- <span class="fa-li"><img src="images/TraefikLabs-icon-white.svg" style="height: 1em;" /></span> [tr&aelig;fik Ambassador][5] since 2021</li>
 - <span class="fa-li"><i class="fa fa-briefcase"></i></span> [Haufe Group][6] since 2016
+- <span class="fa-li"><i class="fa-brands fa-docker"></i></span> [Docker Captain][4] since 2017
 - <span class="fa-li"><i class="fa fa-person-chalkboard"></i></span> Self-employed [trainer][7] since 2020
 - <span class="fa-li"><i class="fa fa-user-helmet-safety"></i></span> Initiator/maintainer of [uniget][12] since 2021
 
 <!-- .element: class="fa-ul" style="line-height: 175%;" -->
 
 *Reach out via* [<i class="fa-brands fa-mastodon"></i>][11] [<i class="fa-brands fa-twitter"></i> <i class="fa-brands fa-x-twitter"></i>][8] [<i class="fa-brands fa-github"></i>][9] [<i class="fa-brands fa-keybase"></i>][10]
 
-
 [1]: https://dille.name
 [2]: https://dille.name/blog/tags/#Slides
 [4]: https://www.docker.com/captains/nicholas-dille
-[5]: https://info.traefik.io/traefik-ambassador-program
 [6]: https://haufegroup.com
 [7]: https://dille.name
 [8]: https://twitter.com/@NicholasDille
diff --git a/2023-11-15_ContainerConf-OCI-1.1.html b/2023-11-15_ContainerConf-OCI-1.1.html
@@ -53,38 +53,44 @@
 <!-- 110_ecosystem/oci/slides.md -->
 ## What this is about
 
-build <i class="fa-duotone fa-user-helmet-safety"></i>
+We build <i class="fa-duotone fa-user-helmet-safety"></i> container images <i class="fa-duotone fa-database"></i> and...
 
-image <i class="fa-duotone fa-database"></i>
+...push <i class="fa-duotone fa-person-dolly"></i> them into a registry <i class="fa-duotone fa-warehouse-full"></i>
 
-push <i class="fa-duotone fa-person-dolly"></i>
+Registries are self-hosted <i class="fa-duotone fa-server"></i> or...
 
-registry <i class="fa-duotone fa-warehouse-full"></i>
+...consumed as-a-Service <i class="fa-duotone fa-square-phone"></i>
 
-artifacts <i class="fa-duotone fa-box-open-full"></i>
-
-spec <i class="fa-duotone fa-file-certificate"></i>
-
-We are using container registries (aaS, self-hosted)
-
-Registries follow specs
+All of them follow a flexible spec <i class="fa-duotone fa-file-certificate"></i>
 
 Store more than container images
 
-Spec is flexible
-
-Store generic artifacts
+Store generic artifacts <i class="fa-duotone fa-box-open-full"></i>
 </textarea></section>
 
 <section data-markdown="" data-separator="^---$" data-separator-vertical="^--$"><textarea data-template="">
 <!-- 110_ecosystem/oci/slides.md -->
-## OCI
+## Open Container Initiative
+
+OCI [](https://opencontainers.org/)
+
+Specifications:
 
-XXX link
+- Runtime [](https://github.com/opencontainers/runtime-spec)
+- Image [](https://github.com/opencontainers/image-spec)
+- Distribution [](https://github.com/opencontainers/distribution-spec)
 
-XXX specs
+runc [](https://github.com/opencontainers/runc) - reference implementation of runtime spec
 
-XXX scope of this talk
+XXX history
+
+XXX members
+
+XXX TOC
+</textarea></section>
+
+<section data-markdown="" data-separator="^---$" data-separator-vertical="^--$"><textarea data-template="">
+## Scope of this talk
 
 XXX contents 1.0
 
@@ -101,7 +107,9 @@
 
 ## Media types
 
-XXX
+OCI defines new media types
+
+Widespread adoption of OCI media types
 
 | What           | OCI                             | Docker                                        |
 |----------------|---------------------------------|-----------------------------------------------|
@@ -112,65 +120,53 @@
 
 <!-- .element: style="width: 105%; font-size: xx-large;" -->
 
+XXX `Accept` header
+
 ---
 
 ## Accept multiple media types
 
-XXX
+`Accept` header can also list multiple media types
+
+XXX example
 </textarea></section>
 
 <section data-markdown="" data-separator="^---$" data-separator-vertical="^--$"><textarea data-template="">
 <!-- 110_ecosystem/oci/slides.md -->
 ## How it started
 
-XXX ORaS / OCI artifacts
-
-XXX very low-level
-
-XXX [](https://github.com/opencontainers/image-spec/blob/main/manifest.md#guidelines-for-artifact-usage)
+### <span style="font-size: larger;">O</span>CI <span style="font-size: larger;">R</span>egistries <span style="font-size: larger;">a</span>s <span style="font-size: larger;">S</span>torage (ORaS)
 
-XXX demo oras.demo
+Initial project to store artifacts in OCI registries
 
----
-
-## How it's going
+Very low-level
 
-### Existing implementations
+Official guidance for artifacts [](https://github.com/opencontainers/image-spec/blob/main/manifest.md#guidelines-for-artifact-usage)
 
-XXX compose (docker/app, archived) [](https://github.com/docker/app)
+### Demo
 
-XXX CNAB [](https://cnab.io/)
+XXX demo oras.demo [](https://github.com/nicholasdille/container-slides/blob/master/110_ecosystem/oci/oras.demo)
 
-XXX extension of image index for SBOM by Docker (buildkit.demo)
+---
 
-```
-Name:                            localhost:5000/test:oci-sbom
-MediaType:                       application/vnd.oci.image.index.v1+json
-Digest:                          sha256:cb961fc14f51de08aea804a4bc1aac3cea32421f6dc87b96a6050917c22f31d4
+## How it's going
 
-Manifests:
+### Existing implementations (excerpt)
 
-  Name:                          localhost:5000/test:oci-sbom@sha256:326d32b66725c5007dedc9515be190fc491d37a918ce61df41f9bd6556b79ff5
-  Digest:                        sha256:326d32b66725c5007dedc9515be190fc491d37a918ce61df41f9bd6556b79ff5
-  MediaType:                     application/vnd.oci.image.manifest.v1+json
-  Platform:                      linux/amd64
+Docker App [](https://github.com/docker/app) (archived)
 
-  Name:                          localhost:5000/test:oci-sbom@sha256:7fa02a66b3e93c2be01521b1bb8383c8128077c3353be20f95a68a07b1288f6c
-  Digest:                        sha256:7fa02a66b3e93c2be01521b1bb8383c8128077c3353be20f95a68a07b1288f6c
-  MediaType:                     application/vnd.oci.image.manifest.v1+json
-  Platform:                      unknown/unknown
-  Annotations:
-    vnd.docker.reference.digest: sha256:326d32b66725c5007dedc9515be190fc491d37a918ce61df41f9bd6556b79ff5
-    vnd.docker.reference.type:   attestation-manifest
-```
+Cloud Native Application Bundles (CNAB) [](https://cnab.io/)
+- porter [](https://github.com/getporter/porter)
 
-XXX tag-sha used by cosign (cosign.demo)
+SBOM for container images [](https://github.com/moby/buildkit/blob/master/docs/attestations/sbom.md)
+- BuildKit [](https://github.com/moby/buildkit) >=0.11.0
+- buildx [](https://github.com/docker/buildx) >=0.10.0
 
-XXX helm charts (helm.demo) [](https://helm.sh/docs/topics/registries/)
+Container signatures using sigstore's cosign [](https://www.sigstore.dev/)
 
-XXX OPA policies using CLI [](https://github.com/opcr-io/policy#demo-videosrecordings)
+Helm charts [](https://helm.sh/docs/topics/registries/)
 
-XXX possibly more
+OPA policies [](https://github.com/opcr-io/policy#demo-videosrecordings)
 </textarea></section>
 
 <section data-markdown="" data-separator="^---$" data-separator-vertical="^--$"><textarea data-template="">
