Search results for: security audit

Top Kubernetes security tools in 2023

Posted on July 26, 2023 | By Ben Hirschberg

Member post originally published on the ARMO blog by Ben Hirschberg Kubernetes security is a critical part of the app lifecycle, through the build, deployment and runtime stages. Kubernetes runtime environments are dynamic and continuously changing. As clusters are replaced and…

Using Kyverno with Pod Security Admission

Posted on July 18, 2023

Guest post originally published on the Kyverno blog by Kyverno Maintainers Using Pod Security Admission with Kyverno for the best of both worlds. Pod Security Admission (PSA) is the built-in successor to Kubernetes PodSecurityPolicy (PSP) and is enabled by default starting…

Knative fuzzing audit results

Posted on July 14, 2023

Project post originally published on the Knative blog by Adam Korczynski, Ada Logics Knative is happy to announce the completion of its fuzzing security audit. The audit was carried out by Ada Logics and is part of an initiative…

PodSecurityPolicy migration with Kyverno

Posted on July 12, 2023

Project post originally published on the Kyverno blog As you’ve probably heard, PodSecurityPolicy (PSP) in Kubernetes is no more. After a deprecation beginning in v1.21, they were finally removed in v1.25. Many organizations out there are still relying on PSPs…

Dapr completes fuzzing audit

Posted on June 30, 2023

Community post by Adam Korczynski, ADA Logics The Dapr project is happy to announce the completion of their fuzzing audit which added 39 fuzzers covering Dapr Runtime, Kit, and Components-Contrib. The audit is part of an initiative by…

Service account 101: the power of M2M with security in mind

Posted on June 1, 2023

Guest post originally published on Mia-Platform’s blog by Giovanna Monti, Full Stack Developer Specialist at Mia‑Platform Service accounts are an essential component of many IT environments, allowing applications and services to access various resources without requiring user intervention….

CNCF fuzzing open source projects for security and reliability

Posted on April 18, 2023

By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving Security by…

containerd completes fuzzing audit

Posted on March 2, 2023 | By Adam Korczynski + Phil Estes

Community post by Adam Korczynski and Phil Estes The containerd project is happy to announce the completion of a comprehensive fuzzing audit which added 28 fuzzers covering a wide range of container runtime functionality. During this audit a…

Notes from CloudNativeSecurityCon 2023

Posted on February 20, 2023 | By Jim Bugwadia

Guest post originally published on the Nirmata blog by Jim Bugwadia The Cloud Native Computing Foundation (CNCF) held the first ever standalone Cloud Native Security Conference in Seattle on February 1st and 2nd. Here are some of my…

Results of the KEDA security engagement

Posted on February 2, 2023 | By Amir Montazery

Community post by Amir Montazery, OSTIF, cross-posted from OSTIF’s blog KEDA, or the Kubernetes-based Event Driven Autoscaling project, was reviewed by Trail of Bits at the end of 2022. KEDA joins a growing list of CNCF Projects audited…