Kubernetes security: best practices for Kubernetes secrets management
Guest post originally published on the CyberArk blog by John Walsh Kubernetes has come a long way since its inception. But as the adoption of containerization has grown, Kubernetes security continues to be top of mind. Red Hat’s “The…
Introduction Harbor is a self-hosted cloud native registry that stores, scans, and signs content such as container images as well as OCI artifacts, including Helm charts. It extends the open source CNCF Distribution project and adds…
KCD Italy 2023: results, hurdles and emotions
Ambassador and KCD post by Annalisa Gennaro, CNCF Ambassador, on behalf of and together with the KCD Italy Team What are KCDs? Kubernetes Community Days (KCDs) are events supported by the CNCF (Cloud Native Computing Foundation)…
Launching the new CNCF End User Technical Advisory Board: Amplifying End User voices
Staff post by Taylor Dolezal, Head of Ecosystem at CNCF Greetings to our vibrant CNCF community! We are forming the CNCF End User Technical Advisory Board (TAB), which will foster a thriving, collaborative, and inclusive CNCF…
Dragonfly completes security audit!
Project post originally published on the Dragonfly blog This summer, over four engineer weeks, Trail of Bits and OSTIF collaborated on a security audit of Dragonfly2. A CNCF Incubating Project, Dragonfly2 functions as file distribution for peer-to-peer technologies. Included in the scope…
36 CNCF term 2 LFX mentees have successfully completed the program!
Congratulations to the 36 interns who have graduated from the LFX Program after working with CNCF projects over June, July, and August! Mentees had the opportunity to work on many different projects across our Graduated, Incubating,…
Secure software supply chain for OCI Artifacts on Kubernetes
Guest post originally published on SparkFabrik’s blog The concept of the Software Supply Chain is growing in importance since the Cloud Native approach has become increasingly central to modern application development. As in traditional industry, an…
Introducing the Wasm landscape (in English and Chinese)
By Chris Aniszczyk, Vivian Hu and Michael Yuan “Containers are the new normal, and WebAssembly is the future.” — CNCF Annual Survey 2022 key findings. Originally created as a secure sandbox to run compiled C/C++…
Using dragonfly to distribute images and files for multi-cluster kuberenetes
Dragonfly provides efficient, stable, securefile distribution and image acceleration based on p2p technology to be the best practice and standard solution in cloud native architectures. It is hosted by the Cloud Native Computing Foundation(CNCF) as an…
Verifying images in a private Amazon ECR with Kyverno and IAM Roles for Service Accounts (IRSA)
Community post originally published on GitHub by Shuting Zhao, a maintainer of Kyverno When running workloads in Amazon Elastic Kubernetes Service (EKS), it is essential to ensure supply chain security by verifying container image signatures and…