DevOps.com: “CNCF Graduates Open Policy Agent Project to Manage Compliance as Code”
The Cloud Native Computing Foundation (CNCF) announced this week that the Open Policy Agent (OPA) project, which many IT teams are employing to manage compliance as code, has officially graduated.
Cloud Native Computing Foundation Announces Open Policy Agent Graduation
The cloud native policy enforcement engine is used in production by organizations like Goldman Sachs, Netflix, Pinterest, and T-Mobile SAN FRANCISCO, Calif. – February 4th, 2021 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable…
The New Stack: "Open Policy Agent’s mission to secure the cloud"
If cloud computing and software development are to continue to thrive, more cooperation is needed to ensure our shared systems are secure. To do that, we need to agree to implement industry standards in vital areas….
Enforcing Artifact Security with Trivy and OPA
In cloud-native development, ensuring the integrity and security of software artifacts (such as Docker images, Python wheels, and Helm charts) is a fundamental challenge. With the growing adoption of continuous integration and delivery pipelines, there’s a…
These Kubernetes mistakes will make you an easy target for hackers
Kubernetes is exceedingly powerful for orchestrating containerized applications at scale. But without proper monitoring and observability—especially in self-managed infrastructure—it can quickly become a security disaster waiting to happen. This is not due to inherent flaws in…
Kubescape becomes a CNCF incubating project
The CNCF Technical Oversight Committee (TOC) has voted to accept Kubescape as a CNCF incubating project. Kubescape is an open-source Kubernetes security project designed to offer comprehensive security coverage throughout the entire development and deployment lifecycle….
Kubestronaut in Orbit: Eyal Zekaria
Get to know Eyal This week’s Kubestronaut in Orbit, Eyal Zekaria is a Senior Cloud Architect in Berlin, Germany. Eyal has a DevOps and SRE background and has experience operating Kubernetes clusters at scale at different…
Emerging trends in the cloud native ecosystem
Member post by Jatinder Singh Purba, Principal, Infosys; Krishnakumar V, Principal, Infosys; Prabhat Kumar, Senior Industry Principal, Infosys; and Shreshta Shyamsundar, Distinguished Technologist, Infosys Emerging Trends in the Cloud-native Ecosystem In the last quarter of 2024,…
Kubestronaut in Orbit: Rishabh Sharma
Get to know Rishabh This week’s Kubestronaut in Orbit, Rishabh Sharma, our first Kubestonaut from Finland, is a senior software development engineer where he manages cloud native tech solutions for Capgemini Finland Oy. He is currently…
Software supply chain compliance and security policies with SignServer, EJBCA, and Chainloop
Member post originally published on the EJBCA by Keyfactor and Chainloop blogs by Ben Dewberry, Product Manager, Signing and Key Management, Keyfactor and Miguel Martinez Trivino, Co-founder, Chainloop A software supply chain is the series of steps…