KubeVela: the road to cloud native application and platform engineering
Guest post by Da Yin, engineer at Alibaba Cloud and maintainer of KubeVela Background Dating back to year 2019, Kubernetes is gradually being widely adopted as the de facto standard for deploying and managing infrastructures. More and more…
The Notary project completes fuzzing security audit
Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to announce the…
Threat modeling to cloud native: we need a new approach
Guest post by Rodrigo Rocha In the past few years, many companies have moved to the cloud. It’s a movement that offers many benefits for businesses, but these benefits come with increased risk and vulnerabilities. Before we continue…
Project post originally published on the Flux blog by Daniel Holbach As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are…
KubeEdge! CNCF’s First SLSA 3 Project
Community post by KubeEdge SIG-Security (Reprinted from the KubeEdge blog) In July 2022, the KubeEdge community completed a third-party security audit of KubeEdge[2] and released a paper on cloud native edge computing security threat analysis and protection. Based…
How Flux and Pulumi give each other superpowers
Project post originally published on the Flux blog by Michael Bridgen Pulumi is an “Infrastructure as Code” tool that lets you specify your infrastructure as programs written in JavaScript, Python, Java, Go, .NET languages, or YAML. The Pulumi Kubernetes operator drives…
“A well-secured project”: Cilium security audits 2022 published
Project post by Liz Rice, Isovalent, for the Cilium project One of the benefits for CNCF projects is the funding of third-party security audits and testing. These help projects identify potential vulnerabilities in their code and process improvements…
How to implement FinOps and increase your Kubernetes cost avoidance
Guest post originally published on Fairwinds’s blog by John Hashem Many organizations recently started using Kubernetes in production and are just beginning to see what the Kubernetes and cloud costs really look like. It is not uncommon for…
Guest post originally published on Flux’ blog by Daniel Holbach As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are available…
Istio publishes results of 2022 security audit
Project post originally published on the Istio blog by Craig Box Security review of Istio finds a CVE in Go standard library Istio is a project that platform engineers trust to enforce security policy in their production Kubernetes…