Bergen, Norway

2024 Conference
Jaeger
Prometheus
Kubernetes
Falco
Harbor
Cilium
Argo
Vitess
Helm
Argo
Cert Manager
Falco
Kubernetes
Cert Manager
Shipwright
Kured
Crossplane
Containerd
Operator Framework
Vitess
Backstage
Linkerd
Argo
Etcd
Kubernetes
Virtual Kubelet
Harbor
Kubernetes
CoreDNS
gRPC
Flux
Etcd
Crossplane
Helm
CoreDNS
Flux
Cilium
wasmCloud
Cert Manager
Cert Manager
Kubernetes
Istio
Istio
Envoy
Shipwright
Kyverno
Etcd
OpenTelemetry
KubeVirt
Back to Speakers
Martin Tverråen

Martin Tverråen

CTO @ Saline.Network

About

Distributed systems architect and CTO in the Web3 sphere. Experience and interests span from running platform teams, PKI and confidential computing to blockchain operations and protocol design.

Photos

Session

Lean, Mean, Nix-Built Docker Scenes

Lightning Talk (10 min)BeginnerEnglish

Session Recordings

Session Recording

Tired of chasing the "perfect" container? You've tried distroless for security, scratch for minimalism, Alpine for size, and multi-stage Dockerfiles to trim layers - only to end up wrestling hidden dependencies, drifting tags, and surprise CVEs. Let's leave that behind.

In this 10-minute demo, I'll show you how to transform your CI pipeline with Nix flakes so every build yields a minimal, secure, immutable golden image:

1. Flake-driven CI

Replace your sprawling Dockerfile with a single flake.nix that declaratively pins every OS package, runtime, and library.

2. Automagic minimalism

Nix's purity model pulls only what you need, producing images measured in megabytes, not gigabytes

3. Hermetic dev and CI parity

Leverag nix develop for a dev shell identical to your CI build environment. Say goodbye to "it works on my machine".

Step into the light and and say goodbye to your Dockerfile nightmares.

Platform Engineering & Developer ExperienceKubernetes & Orchestration