9 Kubernetes security best practices everyone must follow
By Connor Gilbert, product manager at StackRox Last month, the Kubernetes ecosystem was shaken by the discovery of the first major security flaw in Kubernetes, the world’s most popular container orchestrator. The vulnerability – CVE-2018-1002105 – enables attackers…
CNCF to host two security projects – Notary and TUF specification
Riyaz Faizullabhoy, Docker Security Engineer, today announced on stage at Open Source Summit Europe, that the Cloud Native Computing Foundation (CNCF) Technical Oversight Committee (TOC) has voted Notary in as our 13th hosted project and TUF in as…
KubeCon + CloudNativeCon North America 2024 and Utah’s Bathroom Bill
CNCF and the Linux Foundation are saddened by the Utah state legislature’s passing of HB 257, an anti-equal rights law commonly referred to as the “Utah bathroom bill.” Notwithstanding the new Utah law, CNCF is committed to ensuring…
The hidden economy of open source software
Member post originally published on Sysdig’s blog by Nigel Douglas The recent discovery of a backdoor in XZ Utils (CVE-2024-3094), a data compression utility used by a wide array of various open-source, Linux-based computer applications, underscores the importance of open-source…
Cloud Native Computing Foundation’s FluxCD Project Gains New Corporate Support
As the support landscape for FluxCD evolves and expands, new companies and end users step up to ensure long-term project sustainability PARIS, France – KubeCon + CloudNativeCon Europe – March 19, 2024 – The Cloud Native Computing Foundation®…
CNCF Graduated projects have been busy! Here are the latest updates
We’re excited to announce a slew of graduated project updates. Read on for some, but not all, of the latest news from the project teams, or get the comprehensive details on the video (which will preview at KubeCon…
Cloud Native Computing Foundation Announces Falco Graduation
The cloud native runtime security tool is used by more than 30 public adopters, including Booz Allen Hamilton, GitLab, Shopify SAN FRANCISCO, Calif. – February 29, 2024 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems…
Cloud Native Computing Foundation Announces the Graduation of CloudEvents
CloudEvents cultivates event metadata interoperability across services and systems SAN FRANCISCO, Calif. – January 25, 2024 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, today announced the graduation of CloudEvents. CloudEvents…
Member post originally published on Nirmata’s blog by Shuting Zhao The Kyverno team is delighted to share a new Kyverno release, v1.11! This release marks a significant milestone for Kyverno, with an extensive development period of around five…
Community post by David Korczynski and Adam Korczynski of Ada Logics Fuzzing is a central role in today’s software development practices for ensuring secure and reliable software. CNCF is committed to promoting the use of fuzzing as part…