Active or passive health checks: which is right for you?
Guest post originally published on NGINX’s blog by Robert Haynes of F5 Just as regular check‑ups with a doctor are an important part of staying healthy, regular checks on the health of your apps are critical…
Mastering deployment strategies: a comprehensive guide to Blue-Green, Canary, and more
Guest post originally published on Ozone’s blog by Amina Reshma Welcome to a comprehensive guide to mastering deployment strategies! Deploying software across multiple infrastructures and regions can be complicated, with a risk of downtime, performance issues, and data…
Ant Group security technology’s Nydus and Dragonfly image acceleration practices
Guest post by Dragonfly maintainers Introduction ZOLOZ is a global security and risk management platform under Ant Group. Through biometric, big data analysis, and artificial intelligence technologies, ZOLOZ provides safe and convenient security and risk management…
Kyverno — verify Kubernetes control plane images
Guest post originally published on Medium by Charles-Edouard Brétéché In this story we are going to deploy a local Kubernetes cluster using kind, then we will deploy Kyverno and use it to verify Kubernetes control plane images signature. What is Kyverno ? Kyverno is an open-source policy engine for Kubernetes that allows…
Istio Ambient waypoint proxy made simple
Guest post originally published on Istio’s blog by Lin Sun, Solo.io, and John Howard, Google Introducing the new destination oriented waypoint proxy for simplicity and scalability. Ambient splits Istio’s functionality into two distinct layers, a secure…
CNCF fuzzing open source projects for security and reliability
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving…
Volcano Engine: distributed image acceleration practice based on Dragonfly
Project post by Gaius, Dragonfly Maintainer Terms and definitions Term Definition OCI The Open Container Initiative is a Linux Foundation project launched by Docker in June 2015 to design open standards for operating system-level virtualization (and…
Keycloak joins CNCF as an incubating project
The CNCF Technical Oversight Committee (TOC) has voted to accept Keycloak as a CNCF incubating project. Keycloak is an Identity and Access Management (IAM) solution providing centralized authentication and authorization to applications and APIs. It provides…
CNCF On-Demand Webinar:Falcoctl – easy management of the lifecycle of your rules & plugins for Falco
If you’ve been in the cloud native community, chances are you’ve heard the term ‘ctl’ (pronounced cuttle or c-t-l). Just as Kubectl allows you to run commands against Kubernetes clusters, Falcoctl is a command line tool…
The Notary project completes fuzzing security audit
Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to…