Verifying images in a private Amazon ECR with Kyverno and IAM Roles for Service Accounts (IRSA)
Community post originally published on GitHub by Shuting Zhao, a maintainer of Kyverno When running workloads in Amazon Elastic Kubernetes Service (EKS), it is essential to ensure supply chain security by verifying container image signatures and…
Notary Project announces a major release!
Project post originally published on the Notary Project blog by the Notary Project Release Team The Notary Project maintainers are proud to announce a major release, including Notary Project specifications v1.0.0, notation v1.0.0, notation-go v1.0.0, and notation-core-go v1.0.0 which are ready…
Beginner’s guide to Kuma service mesh
Guest post originally published on the InfraCloud blog by Sonali Srivastava The concept of service mesh emerged as a response to the growing popularity of cloud native environments, microservices architecture, and Kubernetes. It has its roots…
Inside Prometheus + the PCA exam
Prometheus is one of the highest velocity CNCF projects, with broad adoption across the IT industry globally, so it’s no wonder that the Prometheus Certified Associate (PCA) has become one of our most popular certifications. This…
FYI: The dark side of ChatGPT is in your software supply chain
Guest post originally published on the ARMO blog by Ben Hirschberg Let’s face it, the tech world is a whirlwind of constant evolution. AI is no longer just a fancy add-on; it’s shaking things up and…
Canary deployment with Flagger and Istio on Devtron
Guest post originally published on Devtron’s blog by Rupin Solanki TL;DR: Users can deploy apps and progressively shift traffic to an already-deployed version or the new version or roll it out to a subset of users…
ITOps Times: “KEDA graduates from CNCF”
The Cloud Native Computing Foundation (CNCF) has announced the graduation of another project: KEDA, which is a Kubernetes autoscaler.
An AI dilemma: how to implement generative AI tools safely and ethically
Member post by Dan Ciruli, VP of Product at D2iQ Artificial intelligence is being used in all sorts of ways, from chatbots and virtual assistants to self-driving cars, and 97% of business owners believe that ChatGPT…
Armada: Six months in the sandbox
Member post originally published on the G-Research blog by Jay Faulkner, Open Source Software Developer, G-Research Armada was accepted into the Cloud Native Computing Foundation (CNCF) sandbox in January 2023; the journey to get there, and what we’ve achieved…
Unleashing in-toto: The API of DevSecOps
Guest post by Aditya Sirish, in-toto maintainer and Cole Kennedy, member of the in-toto steering committee The Integration Revolution Being part of the DevOps world, you’re likely no stranger to the DevSecOps buzz — the strategy…