Community Post Argo CD end user threat model: security considerations for hardening declarative GitOps CD on Kubernetes
Community post by Andres Vega from ControlPlane and Michael Crenshaw from Argo CD Argo CD provides deployment flexibility, which enables operators to configure it to varying situations. The new report by ControlPlane provides a comprehensive threat modeling analysis...April 21, 2023 | By Andres Vega + Michael Crenshaw
Community Post New Kubernetes security audit complete and open sourced
By Chris Aniszczyk (@cra) and Rey Lejano In 2018, the Cloud Native Computing Foundation (CNCF) started performing and open sourcing third-party security audits with the goal of improving the overall security practices of our ecosystem. Since then, Argo,...April 19, 2023
Community Post CNCF fuzzing open source projects for security and reliability
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving Security by...April 18, 2023
Community Post Introducing Cloud Native Explorers: Amsterdam!
By the Cloud Native Explorers Building on the success of “Bob and Jeefy’s Guide to Detroit”, we are pleased to announce Cloud Native Explorers! Cloud Native Explorers is a new blog series where we bring together community members...April 17, 2023
Community Post Tips and tricks for a successful KubeCon + CloudNativeCon Europe 2023!
By the CNCF Marketing Committee + CNCF Staff KubeCon + CloudNativeCon Europe 2023 is just days away, and with more than 10,000 folks attending, this event is the Cloud Native community’s largest in Europe to date. Networking is...April 11, 2023
Community Post Announcing a white paper on Platforms for Cloud Native Computing
Community post by Josh Gavant and Abby Bangser, CNCF’s Platforms WG CNCF’s Platforms working group (WG) is pleased to announce the first release of a whitepaper to provide guidance and clarity on the nature and benefits of platforms...April 11, 2023 | By Josh Gavant + Abby Bangser
Ambassador Post The longest-running Kubernetes Community Days is back!
Guest post by Alessandro Vozza, Andy Repton, Andrea Giardini, Ayodeji Ogundare, Marcel Kerker, Meg Stefouli, Pablo Musa, and William Rizzo This is a story about community, resilience, grit, and friendship. The Netherlands is a small country with about...April 11, 2023
Community Post Securing cloud native environments: CNCF Cloud Native Security Whitepaper version 2 audio is now available
Community post by Ragashree M C, CNCF Security Technical Advisory Group CNCF Security Technical Advisory Group is excited to announce the release of the audio version of our flagship whitepaper, Cloud Native Security Whitepaper v2. As more and...April 10, 2023
Ambassador Post Outlining the structure of your open source software project
Community post by Leonard Pahlke There are numerous ways to start your open source project. You may already have a working product, a team behind it, proper documentation and guides, or you may just have an idea and...April 3, 2023
Community Post Kubernetes storage is complex, but it’s getting better
Community post by Michael Cade Introduction — what is Kubernetes Storage? Kubernetes storage is a way to manage persistent data in a Kubernetes environment. Kubernetes storage can be used to store data that is independent of the container’s...March 28, 2023