Building Scalable, Agile, and Secure APIs with Kubernetes and Microservices
The dawn of APIs across the digital ecosystem has fundamentally disrupted standard business models and software development. And enhancing these approaches with intelligent, data-driven, and real-time insights allows your organization to dynamically scale. However traditional monolithic…
Automating NIS2 Compliance in Kubernetes with Kyverno: A Practical Guide
2025 is the year when NIS2 measures will start to bite. Is your platform team ready for the challenge? This post gives a brief overview of NIS2 in the context of platform engineering. Then it gives…
Falcoctl: Artifact Management for Falco
Artifact management is the process of storing, organising, and securing the essential components generated throughout software development. Cloudsmith defines artifacts as the tangible outputs of the development lifecycle, including compiled source code, libraries, executables, and configuration…
Why Infrastructure as Code Needs to be Secure by Default
Infrastructure as Code (IaC) has become the standard for managing cloud infrastructure, but it introduces significant challenges, particularly around security and compliance. Issues such as misconfigurations, secret management, policy enforcement, and auditing can complicate workflows. These…
The rapid growth of AI applications across industries has led to significant changes, particularly with the adoption of deep learning and generative AI, which provide a competitive advantage in industries such as drug discovery in pharmaceutical…
How Autodesk automates FedRAMP compliance and evidence collection Like many large software producers, Autodesk’s concerns about supply chain security across the wider industry (following incidents like the Solarwinds attack) had already driven considerable improvements in its…
KitOps 1.0 release—proven in production and looking to CNCF
Member post by Gorkem Ercan, CTO, Jozu The merry band of maintainers and contributors at the KitOps project is happy to announce the 1.0 release of KitOps. Jozu kicked off the KitOps project after observing the…
From PCAP to SCAP: how Falco’s libraries, registries, and plugins enable cloud native insights
Member post by Nigel Douglas, Sysdig In cloud-native systems, understanding the behaviour of complex, distributed web apps requires powerful tools that can dissect system activity down to its core. As the CNCF graduate project Falco demonstrates,…
Cloud native solutions for SMBs: unlocking scalability and resilience
Ambassador post by Angel Ramirez, CEO of Cuemby and CNCF ambassador. As the technology landscape evolves, businesses must embrace innovations that enable them to adapt and thrive. Cloud-native technologies, championed by the CNCF community, have emerged…
What is authorization? Examples and definitions
Member post originally published on Cerbos’s blog by Omu Inetimi When building a secure application, there are plenty of factors to be considered. Who is allowed into the application, how users are allowed in, measures in…