Search results for: kyverno


Kyverno 1.12 released

Posted on May 10, 2024

Project post originally published on Kyverno’s blog Kyverno 1.12 released with new alternative report server, Global Context Entry, Kyverno JSON in CLI, performance optimizations, enhanced ValidatingAdmissionPolicy and PolicyException support, and tons more! The Kyverno team is thrilled to…


Generating Kubernetes ValidatingAdmissionPolicies from Kyverno policies

Posted on March 29, 2024

Project post originally published on Kyverno’s blog by Mariam Fahmy In the previous blog post, we discussed writing Common Expression Language (CEL) expressions in Kyverno policies for resource validation. CEL was first introduced to Kubernetes for the Validation rules for CustomResourceDefinitions,…


Securing OpenTofu with Nirmata powered by Kyverno

Posted on February 21, 2024 | By Anusha Hegde

Member post originally published on Nirmata’s blog by Anusha Hegde As Infrastructure as Code (IaC) continues to gain popularity among DevOps practitioners for its efficiency and scalability, the recent Terraform license ambiguity has prompted the emergence of alternative…


Securing services meshes easier with Kyverno

Posted on February 16, 2024

Project post originally published on Kyverno’s blog Service meshes are all too common these days in Kubernetes with some platforms even building them into clusters by default. Service meshes are no doubt useful in a variety of ways…


The need for speed: optimizing Kyverno’s performance

Posted on February 9, 2024 | By Jim Bugwadia and Khaled Emara

Member post originally published on Nirmata’s blog by Jim Bugwadia and Khaled Emara About Kyverno Kyverno is a policy engine designed for Kubernetes and cloud native workloads. Policies can be managed as Kubernetes resources, and no new language…


Kyverno completes third-party security audit

Posted on December 5, 2023 | By Kyverno maintainers

Member post originally published on Kyverno’s blog by Kyverno maintainers The Kyverno project is pleased to announce the completion of its third-party security audit. The audit was conducted by Ada Logics in collaboration with the Kyverno maintainers, the Open Source Technology…


Kyverno release 1.11

Posted on November 23, 2023 | By Shuting Zhao

Member post originally published on Nirmata’s blog by Shuting Zhao The Kyverno team is delighted to share a new Kyverno release, v1.11! This release marks a significant milestone for Kyverno, with an extensive development period of around five…


Kyverno expands beyond Kubernetes

Posted on November 6, 2023 | By Kyverno Maintainers

Project post by Kyverno maintainers Kyverno, the open-source policy engine originally built for Kubernetes, is pleased to announce support for non-Kubernetes workloads, by supporting policies that operate on JSON payloads.  Due to its simplicity and wide range of…


Kyverno completes fuzzing security audit

Posted on September 12, 2023 | By Adam Korczynski

Project post originally published on the Kyverno blog by Adam Korczynski Presenting the results from the fuzzing security audit Kyverno, a CNCF policy engine for Kubernetes, is happy to announce the completion of its fuzzing security audit. The…


Verifying images in a private Amazon ECR with Kyverno and IAM Roles for Service Accounts (IRSA)

Posted on August 29, 2023 | By Shuting Zhao

Community post originally published on GitHub by Shuting Zhao, a maintainer of Kyverno When running workloads in Amazon Elastic Kubernetes Service (EKS), it is essential to ensure supply chain security by verifying container image signatures and other metadata….