Features

Chainguard Kubernetes

Chainguard Launches Platform to Enforce Secure Containers

Chainguard today launched a platform that ensures only trusted container images are run on Kubernetes clusters to ensure the integrity of a software supply chain. Chainguard Enforce! is the first product from ...
| | Chainguard, container runtime, container security, policy management, secure by default
service mesh, Buoyant, Istio Solo.io Buoyant Linkerd service mesh

Google Petitions to Donate Istio Service Mesh to CNCF

Google and the Istio Steering Committee today announced at an IstioCon 22 event that they have submitted the open source Istio service mesh for consideration to become an incubating project administered by ...
| | cncf, google, Istio, service mesh
Kubernetes cost cloud Day 2

Report Surfaces Scope of Overspending in the Cloud

A report published today by CAST AI, a provider of a platform for optimizing cloud costs using machine learning algorithms for Kubernetes environments, finds that on average organizations are spending three times ...
| | CAST AI, cloud spending, containers, kubernetes, report
Hot Log4jShell Fix from AWS Needs a Fix on Kubernetes Clusters

Hot Log4jShell Fix from AWS Needs a Fix on Kubernetes Clusters

Amazon Web Services (AWS) this week, after being alerted by Unit 42 security researchers at Palo Alto Networks, made available an update to a hot fix for the Log4jShell vulnerability found in ...
| | aws, hot fix, Log4jShell, Palo Alto Networks
Konveyor Loft Labs Ubuntu

Canonical Expands Ubuntu Container Image Portfolio

As part of an update to its Ubuntu operating system, Canonical has added Grafana Loki, Apache Kafka and Apache Cassandra container images to the portfolio of images to which it provides long-term ...
| | Canonical, container images, linux, operating system, ubuntu
Platform9, platform, Red Hat, Kubernetes, OpenShift, red hat, AI, open source, environments Red Hat Extends OpenShift Platform Plus Environment

Sysdig Shines Spotlight on Container Vulnerabilities Based on Level of Risk

Sysdig today made available a Risk Spotlight tool as part of its cloud service for securing and monitoring container environments that makes it easier to prioritize the vulnerabilities that need to be ...
| | container vulnerabilities, risk spotlight, security breaches, Sysdig, threat detection
metrics, agents, ai, cloud-native, cloud native, project, istio, ambient, architecture, modules, cloud native, CCoE Kubernetes Virtana CrowdStrike cloud native

WSO2 Unfurls Choreo Integration Service for Cloud-Native APIs

WSO2 has made generally available Choreo, a cloud service for integrating cloud-native microservices based on Kubernetes, Docker containers and Envoy proxy software. Asanka Abeysinghe, chief technology evangelist for WSO2, notes that IT organizations ...
| | API, cloud service, docker, Envoy, kubernetes, microservices, open source
zero-trust service mesh Korifi VMware kubernetes HyTrust Extends Compliance Platform

VMware Updates Tanzu Platform to Ease K8s App Deployments

VMware has made generally available an update to its Tanzu Application Platform that makes it simpler to deploy and manage application workloads across multiple Kubernetes clusters. In addition, VMware includes support for ...
| | enterprise, kubernetes, vmware, VMware Tanzu
cloud-native architecture permissions access security

5 Best Practices for Cloud-Native Permissions

Cloud-native/microservices-based products are complex, and so is building access control and managing permissions for these products. And it’s only getting worse with each pull request. Most developers end up building authorization or ...
| | access control, cloud-native applications, open policy agent, permissions, security policy
Canonical VMware DoD AWS Finch CRI-O container containers

Outwitting the New CRI-O Vulnerability

If you’re a CRI-O user, there’s a newly discovered vulnerability that could affect you. It’s called CVE-2022-0811 and it was discovered by CrowdStrike cloud security researchers. While it can’t be exploited by ...
| | clusters, container security, container vulnerability, CRI-O