Introduction Harbor is a self-hosted cloud native registry that stores, scans, and signs content such as container images as well as OCI artifacts, including Helm charts. It extends the open source CNCF Distribution project and adds useful functionality,…
Announcing Linkerd 2.14: Improved enterprise multi-cluster, Gateway API conformance, and more!
Guest post originally published on Linkerd’s blog by William Morgan (Photo by drmakete lab on Unsplash) Over the past 18 months, the adoption of Linkerd has skyrocketed in enterprise environments, with companies like Adidas, Microsoft, Plaid, and DB Schenker deploying Linkerd to bring security, compliance, and…
Guest post originally published on Weaveworks’ blog Overview Developed by Weaveworks in 2016, Flux CD is a GitOps continuous delivery tool used to streamline and automate application deployments. It started as a small, internal project; now it’s a CNCF-graduated project with a…
36 CNCF term 2 LFX mentees have successfully completed the program!
Congratulations to the 36 interns who have graduated from the LFX Program after working with CNCF projects over June, July, and August! Mentees had the opportunity to work on many different projects across our Graduated, Incubating, and Sandbox…
Project post originally published on the Argo blog by Zach Aller Welcome Argo Rollouts 1.6! This release had 33 contributors, of which 22 were first-timers, and includes 134 commits. Thank you all for your contributions! This release is a…
Introducing the Wasm landscape (in English and Chinese)
By Chris Aniszczyk, Vivian Hu and Michael Yuan “Containers are the new normal, and WebAssembly is the future.” — CNCF Annual Survey 2022 key findings. Originally created as a secure sandbox to run compiled C/C++ code in…
Dapr completes 2023 security audit – increasing enterprise confidence
Project post originally published on the Dapr Blog by Yaron Schneider Dapr is trusted by thousands of developers from companies of all sizes to handle their mission critical workloads. These range from manufacturing to automotive to financial services…
Verifying images in a private Amazon ECR with Kyverno and IAM Roles for Service Accounts (IRSA)
Community post originally published on GitHub by Shuting Zhao, a maintainer of Kyverno When running workloads in Amazon Elastic Kubernetes Service (EKS), it is essential to ensure supply chain security by verifying container image signatures and other metadata….
Notary Project announces a major release!
Project post originally published on the Notary Project blog by the Notary Project Release Team The Notary Project maintainers are proud to announce a major release, including Notary Project specifications v1.0.0, notation v1.0.0, notation-go v1.0.0, and notation-core-go v1.0.0 which are ready for production…
Unleashing in-toto: The API of DevSecOps
Guest post by Aditya Sirish, in-toto maintainer and Cole Kennedy, member of the in-toto steering committee The Integration Revolution Being part of the DevOps world, you’re likely no stranger to the DevSecOps buzz — the strategy of embedding…