Search results for: security audit


9 Kubernetes security best practices everyone must follow

Posted on January 14, 2019

By Connor Gilbert, product manager at StackRox Last month, the Kubernetes ecosystem was shaken by the discovery of the first major security flaw in Kubernetes, the world’s most popular container orchestrator. The vulnerability – CVE-2018-1002105 –…


CNCF to host two security projects – Notary and TUF specification

Posted on October 24, 2017

Riyaz Faizullabhoy, Docker Security Engineer, today announced on stage at Open Source Summit Europe, that the Cloud Native Computing Foundation (CNCF) Technical Oversight Committee (TOC) has voted Notary in as our 13th hosted project and TUF…


Cloud Native Computing Foundation Announces CubeFS Graduation

Posted on January 21, 2025

Open source distributed storage system is used by 200+ organizations storing 350 petabytes of data SAN FRANCISCO, Calif. – January 21, 2025 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native…


Fuzzing the CNCF landscape in 2024

Posted on January 13, 2025 | Chris Aniszczyk + Adam Korczynski + David Korczynski

By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) CNCF maintains a high level of security for its projects by way of a series of initiatives such as security auditing, supply-chain assessments and…


Cloud Native Computing Foundation Announces cert-manager Graduation

Posted on November 12, 2024

Open source security project automates highly secure, encrypted data communications in cloud native environments SALT LAKE CITY, Utah – KubeCon + CloudNativeCon North America – November 12, 2024 – The Cloud Native Computing Foundation® (CNCF®), which…


CNCF welcomes wasmCloud to the CNCF Incubator

Posted on November 12, 2024

The CNCF Technical Oversight Committee (TOC) has voted to accept wasmCloud as a CNCF incubating project.  wasmCloud, an open source project from the Cloud Native Computing Foundation (CNCF), enables teams to build and run polyglot applications…


KubeCon + CloudNativeCon North America 2024 and Utah’s Bathroom Bill

Posted on May 8, 2024

CNCF and the Linux Foundation are saddened by the Utah state legislature’s passing of HB 257, an anti-equal rights law commonly referred to as the “Utah bathroom bill.” Notwithstanding the new Utah law, CNCF is committed…


The hidden economy of open source software

Posted on April 26, 2024 | Nigel Douglas

Member post originally published on Sysdig’s blog by Nigel Douglas The recent discovery of a backdoor in XZ Utils (CVE-2024-3094), a data compression utility used by a wide array of various open-source, Linux-based computer applications, underscores the importance…


Cloud Native Computing Foundation’s FluxCD Project Gains New Corporate Support

Posted on March 19, 2024

As the support landscape for FluxCD evolves and expands, new companies and end users step up to ensure long-term project sustainability PARIS, France – KubeCon + CloudNativeCon Europe – March 19, 2024 – The Cloud Native…


CNCF Graduated projects have been busy! Here are the latest updates

Posted on March 13, 2024

We’re excited to announce a slew of graduated project updates. Read on for some, but not all, of the latest news from the project teams, or get the comprehensive details on the video (which will preview…