Bergen, Norway

2024 Conference
Argo
Helm
Flux
Kubernetes
Helm
Backstage
Harbor
Helm
Kured
Istio
Prometheus
Prometheus
CoreDNS
Kubernetes
Flux
Prometheus
Containerd
Argo
Kyverno
OpenTelemetry
Jaeger
Istio
Linkerd
Jaeger
Kubernetes
Cert Manager
Kubernetes
Linkerd
Shipwright
Helm
KubeVirt
Linkerd
KubeVirt
Envoy
Helm
Kubernetes
Crossplane
Shipwright
OpenFeature
Kubernetes
Argo
Linkerd
Cert Manager
Helm
Kubernetes
Istio
Cilium
Flux
Flux
Back to Speakers
Martin Tverråen

Martin Tverråen

CTO @ Saline.Network

About

Distributed systems architect and CTO in the Web3 sphere. Experience and interests span from running platform teams, PKI and confidential computing to blockchain operations and protocol design.

Presentation

Lean, Mean, Nix-Built Docker Scenes

Lightning Talk (10 min)BeginnerEnglish

Tired of chasing the "perfect" container? You've tried distroless for security, scratch for minimalism, Alpine for size, and multi-stage Dockerfiles to trim layers - only to end up wrestling hidden dependencies, drifting tags, and surprise CVEs. Let's leave that behind.

In this 10-minute demo, I'll show you how to transform your CI pipeline with Nix flakes so every build yields a minimal, secure, immutable golden image:

1. Flake-driven CI

Replace your sprawling Dockerfile with a single flake.nix that declaratively pins every OS package, runtime, and library.

2. Automagic minimalism

Nix's purity model pulls only what you need, producing images measured in megabytes, not gigabytes

3. Hermetic dev and CI parity

Leverag nix develop for a dev shell identical to your CI build environment. Say goodbye to "it works on my machine".

Step into the light and and say goodbye to your Dockerfile nightmares.

Platform Engineering & Developer ExperienceKubernetes & Orchestration