Cloud-Native Security Archives

The AI Remediation Bottleneck: Why the Software Supply Chain Demands Radical Openness

For years, the DevSecOps movement has operated on a foundational premise that if you detect a vulnerability, you triage it, patch it, and redeploy. This cycle assumes that our capability to remediate ...

John Morello | June 24, 2026 | AI, containers, CVEs, DevSecOps, Known Exploited Vulnerabilities, microservices, public container images, software supply chain

Together, Edera and Minimus Claim They Can Protect Your Software From AI Hackers

Hopefully, they can deliver because AI programs like Anthropic’s Mythos AI are cracking open programs faster than an otter can shuck oysters. MINNEAPOLIS — At Open Source Summit North America, Edera, a ...

Steven Vaughan-Nichols | May 18, 2026 | AI, containers, Edera, Minimus, security

OWASP Has Adopted DockSec and the Cloud Security Community Is Taking Notice

With more than 13,000 downloads across more than 40 countries, DockSec has earned its place as an OWASP Incubator Project by doing something most container security tools have not managed: closing the ...

Puspita Pradhan | April 30, 2026 | CI/CD, container security, DevSecOps, kubernetes, open source

How AI Is Transforming Cloud-Native Identity and Access Management

AI is reshaping identity and access management with real-time threat detection, adaptive access control and zero-trust for cloud-native environments ...

Devin Partida | April 10, 2026 | AI security, cloud native security, identity and access management, microservices security, zero-trust

Docker Inc. Allies with NanoCo to Deploy General-Purpose AI Agent Safely

Docker Inc. has formed an alliance that makes it simpler to deploy a lightweight NanoClaw artificial intelligence (AI) agent from NanoCo in Docker Sandboxes that ensure any AI agent is only able ...

Mike Vizard | April 1, 2026 | agentic AI, cybersecurity, docker, NanoClaw

Zero Networks Tool Visually Maps Connections Within a Kubernetes Cluster

Zero Networks this week at the KubeCon + CloudNativeCon Europe conference revealed it can now provide a visual map of the services connected via a Kubernetes cluster that can be continuously updated ...

Mike Vizard | March 27, 2026 | cybersecurity, KubeCon + CloudNativeCon Europe 2026, kubernetes, Zero Networks

RapidFort Nutanix Collaboration Speeds Compliant Kubernetes for AI Workloads

RapidFort and Nutanix have partnered to integrate automated supply chain security into the Nutanix Kubernetes Platform (NKP). This collaboration enables enterprises to deploy hardened, near-zero CVE container images at scale, accelerating compliance ...

Adrian Bridgwater | March 23, 2026 | Automated Vulnerability Remediation, Cloud-Native Compliance, container hardening, Cryptographic Provenance, DevSecOps automation, Hybrid Multicloud Security, Infrastructure Ruggedization, KubeCon Amsterdam 2026, Kubernetes at Scale, Minimalist Container Templates, Near-Zero CVE Images, Secure-by-Design Posture, software supply chain security, Sovereign AI Security

Slim.AI Docker OpsRamp Extends AIOps Reach to Kubernetes

The New Multi-Tenant Challenge: Securing AI Agents in Cloud-Native Infrastructure

AI agents run untrusted code. Here’s how to secure them using isolation, least privilege and proven cloud-native patterns ...

Ben Wheatley | March 20, 2026 | AI agents, cloud native security, container security, DevSecOps, least privilege, Multi-tenancy

TLS, certificates, Docker, vulnerabilities, supply chain, KubeCon, SigStore, Kubernetes TrapX container security

The Missing Control Plane in Cloud-Native Supply Chains

Explore how an artifact access plane can improve Kubernetes platform performance, scalability, and security by standardizing how artifacts are governed and delivered, aligning with CNCF ecosystem initiatives ...

Adrian Herrera | March 4, 2026 | artifact access plane, artifact decentralization, artifact firewall, artifact flow optimization, artifact governance, cloud infrastructure, cloud-native platforms, CNCF ecosystem, developer velocity, devops, GitOps, kubernetes, OCI artifacts, platform resilience., software supply chain, Virtual Registry

posture, security posture management, KSPM, Kubernetes KSPM cloud-native Fugue security

Chainguard Dashboard Provides Visibility into Pipeline for Creating Secure Container Images

Chainguard today added a dashboard that provides visibility into which software packages the provider of secure container images is currently prioritizing. Ed Sawma, vice president of product marketing for Chainguard, said the ...

Mike Vizard | February 12, 2026 | Chainguard, container images, container visibility, security