Features Archives

runtime, visibility, Chainguard, threat, cloud-native security, Venafi, security, sigstore, KubeCon, cloud-native, security, secure, Rubrik, Kubernetes, Cloud-Native Security Best Practices

CNCF, Docker Partnership Streamlines Container Security, Operations

CNCF and Docker partner to boost open source projects with security, scalability and trusted container delivery through Docker’s DSOS program ...

Nathan Eddy | September 25, 2025 | cloud native security, CNCF Docker partnership, CNCF projects Kubernetes Prometheus Envoy OpenTelemetry, container image provenance, container registry scalability, container security, DevSecOps open source, Docker Hub trusted images, Docker Hub usage insights, Docker Scout vulnerability scanning, Docker Sponsored Open Source, DSOS program, open source maintainers, open source software supply chain security

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution

The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...

Alan Shimel | September 24, 2025 | cloud native security, CNCF Docker partnership, container image provenance, Docker Hub namespaces, Kubernetes trust, OSS Sponsored Program, platform engineering security, SBOM generation, signed container images, software supply chain

The Cloud-Native Frontier is at the Edge

The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...

Alan Shimel | September 23, 2025 | cloud native, cloud native security, CNCF WASM, distributed workloads, edge computing, hybrid cloud, hybrid cloud strategy, Kubernetes at the edge, WASM vs containers, WebAssembly WASM

WebAssembly, update, updates, aerospike, kubernetes,

WebAssembly 3.0 Delivers Major Performance and Language Support Upgrades

WebAssembly 3.0: Garbage collection, 64-bit memory, multiple memories and tail calls to make high-level language compilation easier ...

Tom Smith | September 22, 2025 | deterministic execution WebAssembly, relaxed vector instructions, WASM tail calls, WASM update

Tigera Extends Project Calico Reach to Secure AI Workloads

Tigera this week added an instance of its integrated container networking and security platform for Kubernetes environments that is specifically designed for artificial intelligence (AI) workloads. Based on open source Project Calico ...

Mike Vizard | September 19, 2025 | AI, Calico, container networking, security, Tigera

OpenTofu, Terraform, IaC, StackGen, Argo, IaC, IaC code, AI, GenAI, Quali OutSystems Spectro Cloud IaC Kubernetes audit

OpenTofu and the New Era of Infrastructure as Code

Terraform’s license shift sparked OpenTofu’s rise. Alan explores how IaC now thrives with both HashiCorp’s Terraform and CNCF’s OpenTofu shaping the future ...

Supply Chain Security: Cloud Native’s Weakest Link?

For years, the conversation in security revolved around networks, firewalls, and endpoints. The perimeter was king. But in the cloud-native era, the old perimeter has dissolved into microservices, APIs, and pipelines. What’s ...

Alan Shimel | September 17, 2025 | cloud native, CNAPP, Log4j, SolarWinds, supply chain

visibility, runtime, eBPF Packet-Level Visibility to Workloads

Runtime Visibility: The Missing Layer in Cloud-Native Security

Cloud-native security can’t rely on old perimeter defenses. With workloads spinning up in seconds, runtime visibility is now the missing layer leaders must prioritize. Learn why observability is security, how tools like ...

Alan Shimel | September 16, 2025 | cloud native security, cloud workload protection, CNAPP, container runtime monitoring, DevSecOps, eBPF observability, Kubernetes security, real-time anomaly detection, runtime visibility, security observability

Security Tool Sprawl: The New Breach Vector for Cloud Native

“More is better” has always been a dangerous assumption in tech. In security, it’s downright reckless. Across the cloud-native ecosystem, organizations are drowning in their own defenses: dozens of overlapping tools, agents, ...

Alan Shimel | September 15, 2025 | cloud native, kubernetes, security, shift-left, tool sprawl

eBPF: The Silent Power Behind Cloud Native’s Next Phase

eBPF is quietly reshaping cloud native computing, powering service meshes, observability, networking, and security directly in the Linux kernel. By reducing sidecar overhead, enabling zero-instrumentation telemetry, and enhancing runtime protection, eBPF is ...