SiliconANGLE: “CNCF’s Notary Project evolves container signing for enhanced supply chain security”
The software supply chain can be challenging to maintain for companies across the chain, causing potential bottlenecks delaying software deployment, which can hurt businesses deeply in the long run.
Join Notary Project at KubeCon + CloudNativeCon Europe 2024!
As containers and cloud native artifacts become common deployment units, users want to make sure that they are authentic in their environments. Notary Project is a set of tools and specifications intended to provide a cross-industry…
Techzine: “CNCF’s Notary and Notation get first full release”
The Cloud Native Computing Foundation’s (CNCF) Notary Project and Notation Project standardization projects for supply chain security have received a major update with version 1.0.0, marking their first full release.
Notary Project announces a major release!
Project post originally published on the Notary Project blog by the Notary Project Release Team The Notary Project maintainers are proud to announce a major release, including Notary Project specifications v1.0.0, notation v1.0.0, notation-go v1.0.0, and notation-core-go v1.0.0 which are ready…
SD Times: “SD Times: CNCF’s Notary and Notation projects get major update”
Notary, the CNCF project that provides cross-industry standards for supply chain security, has announced a major release.
The Notary project completes fuzzing security audit
Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to…
Cloud Native Live: Notary v2 – Promoting Signed Artifacts
Containers are the next major virtualization stack, providing an easy means to build a deployment package that encompasses your code, binaries and dependencies. How do you know the container image your deploying was built by a…
Enforcing image trust on Docker containers using Notary
Guest post originally posted on the Infracloud blog by Frederick Fernando Why worry about software supply chain security? In the past few years, we have seen attacks such as NotPetya and Sunburst, which has shifted the industry’s focus to…
SDxCentral: "CNCF’s latest projects TUF and Notary aimed at security"
The Cloud Native Computing Foundation (CNCF) filled in a missing security component with the inclusion of two new projects under its open source guidance. The CNCF Technical Oversight Committee voted in the security-focused Notary and The…