Search results for: security audit


Navigating the ingress-NGINX retirement

Posted on July 9, 2026 | Sunny Chan, TCC Consulting

1. The Post-March 2026 landscape ⚠ The CatalystAcknowledge the March 2026 retirement of the Kubernetes SIG Network ingress-nginx controller. Staying on this controller introduces severe operational risks, including unpatched CVEs and a complete halt of feature…


Network boundary for AI agents using NGINX and OpenTelemetry

Posted on July 8, 2026 | Marko Sluga, F5

I recently had an interesting conversation at a KCD about OpenClaw with one of the attendees, and they remarked that they wouldn’t put an agent in their network, because “we don’t know what that thing really…


Evolving platform engineering for AI-native workloads

Posted on July 6, 2026 | Pankaj Gupta, Senior Director of Private Cloud Solutions for VMware by Broadcom

Platform Engineering 1.0 delivered real value. Golden paths accelerated deployment. Internal Developer Platforms (IDPs) reduced cognitive load for developers. Self-service infrastructure gave developers back hours they had been spending filing tickets. Pipelines provided a standard vehicle to…


How data sovereignty is changing cloud native infrastructure design

Posted on July 3, 2026 | Dana Cazacu, Marketing Manager, VEXXHOST

The core issue isn’t where your server sits. It’s who can be compelled to hand over what’s on it. For years, cloud providers treated sovereignty as a geography problem. Pick a region. Choose a country. Keep…


Razorpay

Posted on June 18, 2026

Challenge As an authorized Payment Aggregator, Razorpay operates under the strict oversight of the Reserve Bank of India (RBI). The RBI PA Master Directions mandate absolute operating resilience, which introduces several highly specific, non-negotiable security requirements:…


Securing CI/CD for an open source project: Locking down dependencies

Posted on June 12, 2026 | André Martins (Cilium maintainer and Software Engineer, Isovalent at Cisco) and Feroz Salam (Cilium Security Team and Security Engineer, Isovalent at Cisco)

Part two This is the second post in a three-part series on how Cilium hardens its CI/CD pipeline. Part 1 covered access control: who can trigger builds and what code CI is allowed to execute. This…


Introducing Verifiable Execution in Dapr 1.18

Posted on June 11, 2026 | epower

Bringing attestation, provenance, and tamper-evident execution history to workflows and AI agents For years, the cloud native ecosystem has focused on making distributed systems resilient. Applications recover from failures. Services retry requests. Workflows survive crashes and…


Infosys Ltd. Client

Posted on June 3, 2026

Challenge A transformative business vision demanded an equally future-ready technology foundation. The program required carefully balancing large-scale transformation with operational continuity—supporting the organization’s immediate business priorities while establishing a scalable, cloud-native foundation for the “Next Generation…


Mumbai Maha Mahotsav – KubeCon + CloudNativeCon India edition

Posted on June 2, 2026 | Sonali Srivastava, CNCF Co-chair for KubeCon + CloudNativeCon India 2026

Welcome to Mumbai – the City of Dreams, where ambition is the only dress code – and the host city for KubeCon + CloudNativeCon India 2026. As a co-chair of this year’s program, I’ve spent months…


The Kubernetes integration tax: Prometheus, Cilium and production reality

Posted on May 28, 2026 | Rishi Mondal, SRE at Obmondo and CNCF KubeStellar Maintainer

I still remember the first time we lost sleep over something that wasn’t a bug. It was a Tuesday. Grafana dashboards showed blank panels for Cilium network metrics. Hubble was working fine — DNS visibility, TCP…