cloud native security

LLMs & Kubernetes Configuration: Automating Hardening, Drift Detection and Policy Enforcement
Kubernetes misconfigurations remain the top security risk. AI copilots promise automated hardening, drift detection, and policy enforcement to make clusters safer ...
Alan Shimel | | admission controllers, AI copilots, AI in Kubernetes, cloud native security, cncf, drift detection, GitOps, KubeGuard, kubernetes, Kubernetes governance, kubernetes hardening, Kubernetes misconfiguration, Kubernetes security, Kyverno, large language models, LLMs, OPA, OpenTelemetry, platform engineering, RBAC, YAML Jenga

Service Mesh Evolution: Ambient Mode, Gateways & The Return of Simpler Architectures
Service mesh is evolving beyond sidecars. Ambient mode and Gateway APIs deliver security, observability, and traffic control with less overhead. Teams benefit from leaner, more flexible architectures ...

Bridging Observability & Security in Kubernetes: Beyond Just Metrics
Kubernetes has expanded agility but also the attack surface. Alan argues that observability and security can no longer live in silos — metrics, logs, and traces already hold critical security signals, while ...
Alan Shimel | | anomaly detection, C2 traffic, cloud native security, convergence, cross-training, crypto-mining, devops, kubernetes, lateral movement, logs, metrics, observability, observability-driven security, OpenTelemetry, organizational silos, platform engineering, runtime security, security, SRE, tool sprawl, traces

CNCF, Docker Partnership Streamlines Container Security, Operations
CNCF and Docker partner to boost open source projects with security, scalability and trusted container delivery through Docker’s DSOS program ...
Nathan Eddy | | cloud native security, CNCF Docker partnership, CNCF projects Kubernetes Prometheus Envoy OpenTelemetry, container image provenance, container registry scalability, container security, DevSecOps open source, Docker Hub trusted images, Docker Hub usage insights, Docker Scout vulnerability scanning, Docker Sponsored Open Source, DSOS program, open source maintainers, open source software supply chain security

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution
The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...

The Cloud-Native Frontier is at the Edge
The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...

Runtime Visibility: The Missing Layer in Cloud-Native Security
Cloud-native security can’t rely on old perimeter defenses. With workloads spinning up in seconds, runtime visibility is now the missing layer leaders must prioritize. Learn why observability is security, how tools like ...

AI Security in the Cloud-Native DevSecOps Pipeline
As AI reshapes DevSecOps, speed and efficiency collide with new, often hidden, security risks. From machine-generated code flaws to model supply chain threats, the future of cloud-native security depends on blending AI’s ...

Curved Kubernetes: Microsoft Workload Orchestration in Azure Arc
Microsoft has confirmed the release and general availability of “workload orchestration” as a new service in Azure Arc, the company’s extension mechanism that enables Azure cloud management capabilities to work outside Azure ...

Security in Kubernetes: Your Stack is Lying to You
The organizations that succeed will not be the ones with the most tools. They will be the ones that treat security as code, embed it into every commit and align their practices ...