CNCF fuzzing open source projects for security and reliability
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving…
Top 5 GitOps sessions you don’t want to miss at cdCon + GitOpsCon 2023 (May 8-9 in Vancouver)!
In modern tech stacks, CI/CD enables GitOps. With so many organizations using CD and GitOps practices and technologies to build new features quickly, reliably, and securely, it was a natural evolution for the CNCF and CD…
Five minutes! Get a lightweight cloud native application control plane
Guest post by Zhongpei Qiao of Alibaba and KubeVela The continuous maturity of cloud native technology has allowed numerous infrastructure capabilities to be directly utilized by business applications. However, many developers have struggled with the high…
Helm completes fuzzing security audit
Project post originally published on Helm blog by Adam Korczynski, David Korczynski, and Martin Hickey In the past year, the team at Ada Logics has worked on integrating continuous fuzzing into the Helm core project. This was an effort…
CNCF On-Demand Webinar: Kubernetes in 2023
Kubernetes co-founder, Brendan Burns (Microsoft), and CNCF Flux maintainer, Stefan Prodan (Weaveworks), will give an overview of what Kubernetes offers in 2023 in terms of benefits, key features, and how current users are able to efficiently…
Cloud Native Live: Automating Kubernetes Deployments
This session is aimed at cloud-native app developers and platform engineers. We will discuss how engineers can transition from manual operations of their development clusters to workflows that automate cluster tasks using Git and Flux –…
CNCF On-Demand Webinar: Monolith to Microservices with Bite-Sized Kubernetes
A legacy monolithic application can be an obstacle to rapid software delivery, especially when an enterprise must be nimble to thrive in today’s increasingly competitive and unpredictable world. Refactoring to a microservice architecture typically requires a…
The Notary project completes fuzzing security audit
Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to…
Preserving authorship in a GitOps world with Kyverno
Community post originally posted on Neon Mirrors by Chip Zoller It seems just about everyone is doing GitOps in Kubernetes these days. With so many available tools and the maturity of them, it’s hard to avoid…
An overview of the CNCF and OSTIF impact report for the second half of 2022 and early 2023
By Chris Aniszczyk and Amir Montazery CNCF and Open Source Technology Improvement Fund (OSTIF) have been working together for the last several years to conduct security audits for CNCF’s Graduated and Incubating projects. As a result…