Bergen, Norway

2024 Conference
OpenFeature
Helm
Vitess
Shipwright
Flux
Helm
CloudNativePG
OpenTelemetry
Linkerd
Argo
OpenTelemetry
Jaeger
OpenTelemetry
Crossplane
Helm
Harbor
Istio
Logging Operator
Flux
Kubernetes
Logging Operator
OpenTelemetry
Backstage
Harbor
Kubernetes
Operator Framework
Operator Framework
Argo
Flux
CloudNativePG
Cert Manager
Harbor
Falco
Operator Framework
Virtual Kubelet
Prometheus
Crossplane
Envoy
Argo
Crossplane
Etcd
OpenTelemetry
Backstage
Argo
Envoy
Kubernetes
Istio
KubeVirt
Helm
Back to Speakers
Martin Tverråen

Martin Tverråen

CTO @ Saline.Network

About

Distributed systems architect and CTO in the Web3 sphere. Experience and interests span from running platform teams, PKI and confidential computing to blockchain operations and protocol design.

Presentation

Lean, Mean, Nix-Built Docker Scenes

Lightning Talk (10 min)BeginnerEnglish

Tired of chasing the "perfect" container? You've tried distroless for security, scratch for minimalism, Alpine for size, and multi-stage Dockerfiles to trim layers - only to end up wrestling hidden dependencies, drifting tags, and surprise CVEs. Let's leave that behind.

In this 10-minute demo, I'll show you how to transform your CI pipeline with Nix flakes so every build yields a minimal, secure, immutable golden image:

1. Flake-driven CI

Replace your sprawling Dockerfile with a single flake.nix that declaratively pins every OS package, runtime, and library.

2. Automagic minimalism

Nix's purity model pulls only what you need, producing images measured in megabytes, not gigabytes

3. Hermetic dev and CI parity

Leverag nix develop for a dev shell identical to your CI build environment. Say goodbye to "it works on my machine".

Step into the light and and say goodbye to your Dockerfile nightmares.

Platform Engineering & Developer ExperienceKubernetes & Orchestration