Istio publishes results of ztunnel security audit
Passes with flying colors Istio’s ambient mode splits the service mesh into two distinct layers: Layer 7 processing (the “waypoint proxy”), which remains powered by the traditional Envoy proxy; and a secure overlay (the “zero-trust tunnel”…
OSTIF Announces Linkerd Security Audit Results
The Open Source Technology Improvement Fund (OSTIF) is proud to share the results of our security audit of Linkerd. Linkerd is an open source service mesh for Kubernetes which prioritizes reliability, security, and simplicity. Thanks to…
Announcing the results of the Karmada security audit
Community post cross-posted on the OSTIF blog by Helen Woeste, Communications Manager, the Open Source Technology Improvement Fund OSTIF is proud to share the results of our security audit of Karmada. Karmada is an open source…
cert-manager completes CNCF-sponsored security audit!
Cross-posted from the cert-manager blog In late 2023 the cert-manager project began a security audit, sponsored by the CNCF and carried out by the team at Ada Logics, as part of the ongoing effort for cert-manager to reach “graduated” status in…
CubeFS completes security audit!
Community post from the team at OSTIF OSTIF and the CNCF are proud to announce the completion of a security audit of CubeFS. The project, which provides cloud-native storage across a variety of access protocols, was…
Knative completes third-party security audit
Project post originally published on the Knative blog Adam Korczynski, Security Engineer, Ada Logics Knative is happy to announce the completion of its third-party security audit conducted by Ada Logics and facilitated by the Open Source Technology Improvement Fund….
Kyverno completes third-party security audit
Member post originally published on Kyverno’s blog by Kyverno maintainers The Kyverno project is pleased to announce the completion of its third-party security audit. The audit was conducted by Ada Logics in collaboration with the Kyverno maintainers, the Open…
Dragonfly completes security audit!
Project post originally published on the Dragonfly blog This summer, over four engineer weeks, Trail of Bits and OSTIF collaborated on a security audit of Dragonfly2. A CNCF Incubating Project, Dragonfly2 functions as file distribution for peer-to-peer technologies. Included in the scope…
Kyverno completes fuzzing security audit
Project post originally published on the Kyverno blog by Adam Korczynski Presenting the results from the fuzzing security audit Kyverno, a CNCF policy engine for Kubernetes, is happy to announce the completion of its fuzzing security…
Dapr completes 2023 security audit – increasing enterprise confidence
Project post originally published on the Dapr Blog by Yaron Schneider Dapr is trusted by thousands of developers from companies of all sizes to handle their mission critical workloads. These range from manufacturing to automotive to…