Automating NIS2 Compliance in Kubernetes with Kyverno: A Practical Guide
2025 is the year when NIS2 measures will start to bite. Is your platform team ready for the challenge? This post gives a brief overview of NIS2 in the context of platform engineering. Then it gives…
Automate Kubernetes Security and Operations with Kyverno Certified Associate (KCA)
Announcing a New CNCF certification for Kyverno Kyverno is an open-source policy engine designed for Kubernetes that allows teams to validate, mutate, and generate configurations, enabling the automation of security policies as code, beyond just audit…
Cloud Native Now: “CNCF Automates Kubernetes SecOps With Kyverno”
Open source Kubernetes policy engine technology Kyverno has been certified for use and formalized with a new Kyverno Certified Associate (KCA) exam by the Cloud Native Computing Foundation at KubeCon + CloudNativeCon North America this month…
Announcing Kyverno release 1.13!
Project post originally published on the Kyverno blog Kyverno 1.13 released with Sigstore bundle verification, exceptions for validatingAdmissionPolicies, new assertion trees, generate enhancments, enhanced ValidatingAdmissionPolicy and PolicyException support, and tons more! Wednesday, October 30, 2024 Kyverno…
Kubernetes policy driven resource optimization with Kyverno
Member post originally published on Nirmata’s blog by Boris Kurktchiev Introduction As organizations increasingly turn to Kubernetes to deploy and manage containerized applications, they face unique challenges in efficiently allocating resources. The dynamic nature of Kubernetes…
Applying the DRY principle to Kyverno policies
Member post originally published on the Nirmata Blog by Jim Bugwadia The Don’t Repeat Yourself (DRY) principle of software development advocates avoiding repetition of code that is likely to change. Replacing similar code with reusable abstractions makes software…
Project post originally published on Kyverno’s blog Kyverno 1.12 released with new alternative report server, Global Context Entry, Kyverno JSON in CLI, performance optimizations, enhanced ValidatingAdmissionPolicy and PolicyException support, and tons more! The Kyverno team is…
Generating Kubernetes ValidatingAdmissionPolicies from Kyverno policies
Project post originally published on Kyverno’s blog by Mariam Fahmy In the previous blog post, we discussed writing Common Expression Language (CEL) expressions in Kyverno policies for resource validation. CEL was first introduced to Kubernetes for the Validation rules…
Securing OpenTofu with Nirmata powered by Kyverno
Member post originally published on Nirmata’s blog by Anusha Hegde As Infrastructure as Code (IaC) continues to gain popularity among DevOps practitioners for its efficiency and scalability, the recent Terraform license ambiguity has prompted the emergence…
Securing services meshes easier with Kyverno
Project post originally published on Kyverno’s blog Service meshes are all too common these days in Kubernetes with some platforms even building them into clusters by default. Service meshes are no doubt useful in a variety…