Blog


How to secure Kubernetes Pods post-PSPs deprecation
Member Post How to secure Kubernetes Pods post-PSPs deprecation
Guest post originally published on the ARMO blog by Amir Kaushansky Kubernetes pods are the basic building blocks of Kubernetes. It’s managing one or more tightly coupled application containers allowing them to share resources and networks. Pods are hosted on...
June 30, 2022 | By Amir Kaushansky

Why Spark chooses Volcano as built-in batch scheduler on Kubernetes?
Project Post Why Spark chooses Volcano as built-in batch scheduler on Kubernetes?
Guest post by Volcano Maintainers On June 16, 2022, Apache Spark released its new version, v3.3. The highlight of this version is that it provides framework support for customized Kubernetes schedulers and, for the first time, uses Volcano...
June 30, 2022 | By Volcano Maintainers

Comment period for interim Code of Conduct draft documentation
Member Post Comment period for interim Code of Conduct draft documentation
By the Interim CNCF Code of Conduct Committee The Interim Code of Conduct Committee has developed drafts of the following interim policies and procedures and has posted them to the CNCF website for review and comment by CNCF...
June 29, 2022

Colocated VMs get in each other’s way
Member Post Colocated VMs get in each other’s way
Guest post originally published on the Clockwork blog TL;DR: Cloud providers can place multiple VMs of the same cloud customer on a shared physical host – a situation that is difficult to detect with conventional means, but readily...
June 29, 2022

Cloud Native Glossary — the Hindi version is live! 
Community Post Cloud Native Glossary — the Hindi version is live! 
Community post from the Hindi Cloud Native Glossary team The Cloud Native Glossary is a project led by the CNCF Business Value Subcommittee. Its goal is to explain cloud native concepts in clear and simple language without requiring...
June 29, 2022

Announcing Vitess 14
Project Post Announcing Vitess 14
Project cross-post by the Vitess Engineering Team We are pleased to announce the general availability of Vitess 14. Major Themes # In this new release, major improvements have been made in several areas of Vitess, including usability and reliability. Online...
June 28, 2022

Improving Security by Fuzzing the CNCF landscape
Community Post Improving Security by Fuzzing the CNCF landscape
By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) In this blog post we present an overview of the state of fuzzing across CNCF projects. This is based on efforts and work that CNCF has...
June 28, 2022 | By Chris Aniszczyk + Adam Korczynski + David Korczynski

Announcing the completion of Linkerd’s 2022 Security Audit
Project Post Announcing the completion of Linkerd’s 2022 Security Audit
Linkerd project cross-post by William Morgan Today we’re happy to announce the completion of Linkerd’s annual security audit, conducted by Trail of Bits and funded by the Cloud Native Computing Foundation. As part of Linkerd’s commitment to openness, transparency, and security...
June 28, 2022 | By William Morgan

Real-time dynamic authorization – an introduction to OPAL
Member Post Real-time dynamic authorization – an introduction to OPAL
An introduction to OPAL – an open-source administration layer for Open Policy Agent (OPA) that allows you to easily keep your authorization layer up-to-date in real-time Guest post originally published on the Permit.io blog by Daniel Bass TL;DR OPAL is an open-source administration...
June 27, 2022 | By Daniel Bass

Efficient GRC with cybersecurity tooling
Member Post Efficient GRC with cybersecurity tooling
Guest post originally published on the Snapt blog by Iwan Price-Evans “Governance, risk, and compliance” (GRC) might be dirty words for many people working in application development and delivery. Strict rules and processes can be obstacles to innovation...
June 27, 2022 | By Iwan Price-Evans