Add Helm to intro

Author: lizrice

docs/introduction.md

@@ -1,14 +1,19 @@
 # Introduction
 
-TODO!
+TODO! document the attack vectors
 
 > We’ll start with possible attack vectors, to help you map out the threat model that applies to your cluster, so you can figure out where you need to focus your efforts for security.
 
-> We’ll show you how to compromise a deployment with a pod running with a known vulnerability. Once you’ve had the attacker’s eye-view, we’ll walk you through the most important techniques and open source tools to prevent compromise.
+We’ll show you how to compromise a deployment with a pod running with a known vulnerability. Once you’ve had the attacker’s eye-view, we’ll walk you through the most important techniques and open source tools to prevent compromise.
+
+- [Scanning container images for vulnerabilities](scanning.md)
+- [Configuring container images with security in mind, and checking them with policies](policies.md)
+- [Checking your Kubernetes configuration](settings.md)
+- [Enhancing security using GitOps](gitops.md)
 
 ## Create a Kubernetes cluster
 
-To follow along with the practical examples in this tutorial you'll need a Kubernetes cluster that you can experiment with. Since at times you will be deploying insecure code, please don't use your production cluster! You can run a cluster locally on your laptop, for example using [Kind - Kubernetes IN Docker](https://kind.sigs.k8s.io).
+To follow along with the practical examples in this tutorial you'll need a Kubernetes cluster that you can experiment with. Since at times you will be deploying insecure code, please don't use your production cluster! You can run a cluster locally on your laptop, for example using [Kind - Kubernetes IN Docker](https://kind.sigs.k8s.io). We'll also be using Helm to run software on the Kind cluster.
 
 ### Install kind
 
@@ -56,4 +61,35 @@ NAME                 STATUS   ROLES    AGE   VERSION
 kind-control-plane   Ready    master   78m   v1.18.2
 ```
 
-Great! You have a Kubernetes cluster running locally that you can experiment with.
+Great! You have a Kubernetes cluster running locally that you can experiment with.
+
+## Install Helm
+
+If you don't already have Helm on your laptop, you'll want to install that too. Find full instructions in the [Helm documentation](https://helm.sh/docs/intro/install/) or here is a quick guide:
+
+On MacOS using Homebrew:
+
+```
+brew install helm
+```
+
+On MacOS / Linux:
+
+```
+curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3
+chmod +x get_helm.sh
+./get_helm.sh
+```
+
+On Windows using Chocolatey:
+
+```
+choco install kubernetes-helm
+```
+
+If you have a fresh Kind installation there won't be any Helm charts installed yet, so a `helm ls` will return an empty list:
+
+```
+$ helm ls
+NAME	NAMESPACE	REVISION	UPDATED	STATUS	CHART	APP VERSION
+```

docs/scanning.md

@@ -1 +1,10 @@
-# Including vulnerability scanning in your workflow
+# Vulnerability scanning
+
+The Shellshock vulnerability [demonstrated](compromise.md) is a serious vulnerability, but it's just one of thousands of known, exploitable vulnerabilities that range from negligible right up to critical in severity.
+
+
+
+To make sure that your container images don't include
+
+## Including vulnerability scanning in your workflow
+

mkdocs.yml

@@ -7,9 +7,10 @@ copyright: 'Copyright © Liz Rice and Michael Hausenblas'
 nav:
     - Overview: index.md
     - Introduction: introduction.md
-    - Secure settings: settings.md
+    - Compromise a pod!: compromise.md
     - Scanning: scanning.md
     - Policies: policies.md
+    - Secure settings: settings.md
     - GitOps: gitops.md
 theme:
     name: 'material'