All Community Posts


OSTIF’s audit of KubeEdge is complete. Multiple security issues found and fixed.
Community Post OSTIF’s audit of KubeEdge is complete. Multiple security issues found and fixed.
Community post originally published on the OSTIF blog Open Source Technology Improvement Fund (ostif.org) is thrilled to report the results of a security audit of KubeEdge. KubeEdge is an edge computing framework built on top of Kubernetes and...
July 11, 2022

Cloud Native Glossary — the Hindi version is live! 
Community Post Cloud Native Glossary — the Hindi version is live! 
Community post from the Hindi Cloud Native Glossary team The Cloud Native Glossary is a project led by the CNCF Business Value Subcommittee. Its goal is to explain cloud native concepts in clear and simple language without requiring...
June 29, 2022

Improving Security by Fuzzing the CNCF landscape
Community Post Improving Security by Fuzzing the CNCF landscape
By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) In this blog post we present an overview of the state of fuzzing across CNCF projects. This is based on efforts and work that CNCF has...
June 28, 2022 | By Chris Aniszczyk + Adam Korczynski + David Korczynski

Cloud Native Glossary — the Chinese Version is Live! 
Community Post Cloud Native Glossary — the Chinese Version is Live! 
Community post from the Chinese Cloud Native Glossary team: Chester Cheung, Brian Yan (Rocksnake), Jacob953 Yu, Wen Zhou The Cloud Native Glossary is a project led by the CNCF Business Value Subcommittee. Its goal is to explain cloud native...
June 14, 2022

Introduction to the Cloud Native Security Controls Catalog
Community Post Introduction to the Cloud Native Security Controls Catalog
Community post by Jon Zeolla, CTO and Co-Founder of Seiso The CNCF Security Technical Advisory Group (“Security TAG”) has provided a wealth of information to assist organizations in the planning and design of secure cloud native systems, including...
June 7, 2022

OSTIF’s audit of CRI-O is complete – high severity issues found and fixed
Community Post OSTIF’s audit of CRI-O is complete – high severity issues found and fixed
Community post originally published on the OSTIF blog Open Source Technology Improvement Fund is thrilled to report the results of a security audit of CRI-O. CRI-O is an open source software (OSS) project that is an implementation of the Kubernetes Container Runtime Interface. It...
June 6, 2022 | By OSTIF

Ada Logics: CRI-O holistic security audit engagement
Community Post Ada Logics: CRI-O holistic security audit engagement
Community post originally on the Ada Logics blog by David Korczynski, Security Research & Security Engineering and Adam Korczynski, Security Engineering & Security Automation, Ada Logics Ada Logics Ltd. recently performed a holistic security audit of CRI-O. CRI-O is...
June 6, 2022 | By David Korczynski + Adam Korczynski

How we designed the logo of KCD Chennai 2022
Community Post How we designed the logo of KCD Chennai 2022
Community post from the Kubernetes Community Days Chennai team We are proud to present Kubernetes Community Days Chennai (KCD Chennai), a community-organized event supported by the Cloud Native Computing Foundation (CNCF). It gathers adopters and technologists from open...
June 1, 2022

CNCF WG Environmental Sustainability
Community Post CNCF WG Environmental Sustainability
Community post by Max Körbächer, Co-Founder of Liquid Reply, and Leonard Pahlke, Consultant at Liquid Reply We are pleased to announce that we have established a new working group for environmental sustainability. Our mission is to promote sustainability...
May 31, 2022 | By Max Körbächer + Leonard Pahlke

What is continuous profiling?
Community Post What is continuous profiling?
Community post by Uchechukwu Obasi Coming from a background working as a frontend developer at Grafana I’m no stranger to open source performance monitoring. I was part of a team that was responsible for the overall user experience of...
May 31, 2022