New Kubernetes security audit complete and open sourced
By Chris Aniszczyk (@cra) and Rey Lejano In 2018, the Cloud Native Computing Foundation (CNCF) started performing and open sourcing third-party security audits with the goal of improving the overall security practices of our ecosystem. Since then, Argo,…
CNCF fuzzing open source projects for security and reliability
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving Security by…
New Gold Member Hitachi Joins the Cloud Native Computing Foundation
Market leader in cloud-enabled transformation doubles down on cloud native investment AMSTERDAM, The Netherlands – KubeCon + CloudNativeCon Europe – April 17, 2023 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software,…
Comprehensive network security at Splunk
Project post originally published on the Istio blog by Bernard Van De Walle, Splunk + Mitch Connors, Aviatrix With dozens of tools for securing your network available, it is easy to find tutorials and demonstrations illustrating how these…
Keycloak joins CNCF as an incubating project
The CNCF Technical Oversight Committee (TOC) has voted to accept Keycloak as a CNCF incubating project. Keycloak is an Identity and Access Management (IAM) solution providing centralized authentication and authorization to applications and APIs. It provides a complete,…
The Notary project completes fuzzing security audit
Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to announce the…
Linkerd and ingress controllers: bringing the outside world in
Guest post originally published on Linkerd’s blog by Flynn This blog post is based on a workshop I recently delivered at Buoyant’s Service Mesh Academy. If this seems interesting, check out the full recording! No matter what you’re working on…
Announcing the Schedule for cdCon + GitOpsCon North America 2023
This year, CDF and CNCF join forces to bring attendees the best Continuous Delivery and GitOps content available SAN FRANCISCO, March 13, 2023 – The Continuous Delivery Foundation (CDF), which seeks to improve the world’s capacity to deliver…
An overview of the CNCF and OSTIF impact report for the second half of 2022 and early 2023
By Chris Aniszczyk and Amir Montazery CNCF and Open Source Technology Improvement Fund (OSTIF) have been working together for the last several years to conduct security audits for CNCF’s Graduated and Incubating projects. As a result of CNCF’s…
Reflecting on Kubernetes Community Days & OpenInfra Days Indonesia 2022
Community post by Zufar Dhiyaulhaq The Kubernetes and OpenInfra communities recently came together for a landmark event, Kubernetes Community Days & OpenInfra Days Indonesia 2022, held on November 26th – 27th in Jakarta, Indonesia This was the first…