Kubernetes security Archives

Why Kubernetes Admission Control Is Really a Security UX Problem

Most Kubernetes admission webhooks treat security as binary: accept the configuration, or reject it. That binary thinking has matured an entire category of policy engines (OPA Gatekeeper, Kyverno, ValidatingAdmissionPolicy with CEL) that ...

Ketankumar Jani | June 12, 2026 | Admission Control, DevSecOps, kubernetes, Kubernetes security, Policy Engines

How to Implement Shift-Left Security in Cloud-Native Applications?

Most security teams still treat cloud-native security as something to handle after deployment. That approach is costing them more than they realize. According to research, the average cost of a data breach ...

James Miller | May 18, 2026 | CI/CD pipelines, cloud native security, DevSecOps, Kubernetes security, shift left security

CI/CD, GitOps, pipelines, Jenkins, kubernetes, kpack, buildpacks, CI/CD, Codefresh, Komodor, AI, clusters, kubernetes, generative AI Kubernetes Argo container security continuous SQL Server Windocks Tekton Kubeflow Red Hat CI/CD

Where DevOps Pipelines Break: Real Attack Paths in Cloud-Native CI/CD

While traditional security focuses on perimeters, modern attackers are moving upstream to the CI/CD pipeline. By compromising the build process rather than the final product, they can inject malicious code into trusted ...

Alex Vakulov | May 11, 2026 | Artifact Integrity, Build Server Vulnerabilities, CI/CD security, Dependency Poisoning, DevSecOps, Kubernetes security, Pipeline Hardening, Secret Management, SolarWinds Incident, Supply Chain Attacks

Hybrid Cloud at Enterprise Scale: Private Kubernetes for Portability and Control

Private Kubernetes is the missing abstraction layer for enterprise hybrid cloud. Learn how a private Kubernetes platform enables portability, security, governance, and freedom from vendor lock-in across on-prem, private cloud, and public ...

posture, security posture management, KSPM, Kubernetes KSPM cloud-native Fugue security

Edera Advisory Highlights Remote Code Execution Flaw in Kubernetes

Edera, a provider of a platform for securing container runtime environments, this week published an advisory that notes there is a design flaw that could enable full remote code execution (RCE) in ...

Mike Vizard | January 29, 2026 | Edera, kubernetes, Kubernetes security, RCE

Survey Surfaces Raft of Container Security Challenges

A BellSoft survey reveals gaps in container security practices, showing that human error, limited vulnerability scanning, and infrequent patching continue to expose cloud-native environments to risk ...

Mike Vizard | January 29, 2026 | BellSoft survey, cloud native security, container patching, container security, DevSecOps, image signing, Kubernetes security, SBOM, software supply chain security, vulnerability scanning

Best of 2025: Hardening Kubernetes Security with DevSecOps Practices

Kubernetes has emerged as the de facto standard for orchestrating containerized applications, offering unprecedented agility, scalability and speed in delivering software. It enables organizations to respond rapidly to market demands and evolving ...

Saqib Jan | December 31, 2025 | kubernetes, Kubernetes DevSecOps, Kubernetes security, security

edge, containers, containerization, containers, Edara, Buildpacks, container, dockerfiles, time, containers, security, and, Docker, DevOps, docker containers, python, add-ons, kubernetes, Chainguard Docker container Stormforge Azure containers Microsoft New Relic Java Kublr platform Containers on Azure

Mastering AKS: Performance, Security and Cost Optimization in the Cloud

Master Azure Kubernetes Service (AKS) with best practices for performance, security, cost optimization, GitOps, and enterprise-grade operations. A complete guide for DevOps teams ...

Yash Kant Gautam | November 21, 2025 | AKS best practices, AKS cost optimization, AKS observability, AKS production deployment, AKS troubleshooting guide, Azure AD RBAC, Confidential computing AKS, enterprise Kubernetes, GitOps with Flux, KEDA autoscaling, Key Vault CSI driver, Kubernetes chaos engineering, Kubernetes cost reduction, Kubernetes node pool strategy, Kubernetes performance optimization, Kubernetes security, Predictive autoscaling AKS

kubernetes, survey, Dapr, CNCF, Survey Finds Growing Container Security Concerns

Survey Surfaces Myriad Kubernetes Networking Challenges

New survey data shows Kubernetes networking complexity rising, with teams struggling across observability, egress, multi-cluster security, and tool sprawl—highlighting the growing need for platform engineering and unified networking approaches ...

Mike Vizard | November 17, 2025 | cloud-native networking, container networking, debugging, devops, eBPF, egress control, Kubernetes clusters, Kubernetes networking, Kubernetes security, load balancing, microservices, multi-cluster networking, network management complexity, network transparency., observability, platform engineering, SRE

metrics, agents, ai, cloud-native, cloud native, project, istio, ambient, architecture, modules, cloud native, CCoE Kubernetes Virtana CrowdStrike cloud native

Why Kubernetes is Great for Running AI/MLOps Workloads

Kubernetes has become the de facto platform for deploying AI and MLOps workloads, offering unmatched scalability, flexibility, and reliability. Learn how Kubernetes automates container operations, manages resources efficiently, ensures security, and supports ...