SBOM
CleanStart Takes Aim at BusyBox to Harden Container Security
Container security faces a significant "inheritance risk" through BusyBox, a legacy utility package embedded in popular base images. CleanStart addresses this with a new BusyBox-free container architecture, replacing inherited userspace utilities with ...
The Cyber Resilience Act and Cloud Native: Understanding the Impact
How the EU Cyber Resilience Act will impact Kubernetes, containers and cloud native supply chains ahead of the 2027 enforcement deadline ...
Enterprise Kubernetes Isn’t a Cluster. It’s a Platform and a Supply Chain.
Kubernetes is the OS for modern apps — but enterprises need platforms, not just clusters. Focus on standardized paved paths, supply‑chain security (signing, SBOMs, provenance), GitOps + policy automation, multi‑tenant guardrails, and ...
Survey Surfaces Raft of Container Security Challenges
A BellSoft survey reveals gaps in container security practices, showing that human error, limited vulnerability scanning, and infrequent patching continue to expose cloud-native environments to risk ...
Docker, Inc. Adds More Than a Thousand Free Hardened Container Images
Docker is releasing more than 1,000 hardened container images under an open source license, aiming to cut vulnerabilities and strengthen software supply chains ...
How Distroless Containers Defend Against npm Malware Attacks
The npm breach shows why distroless containers matter. Learn how minimal, continuously rebuilt images strengthen cloud-native supply-chain security ...
Chainguard Adds Automatic SBOM Generation Capability
Chainguard added an ability to automatically generate an SBOM for containers to its Enforce control plane to secure cloud-native applications ...
KSOC Publishes SBOM Specification for Kubernetes
Kubernetes Security Operations Center (KSOC) this week published a Kubernetes Bill of Materials (KBOM) specification that promises to make it simpler to discover vulnerabilities. KBOM, available via an open source command line ...
Docker, Inc. to Integrate Free SBOM Generation Tool
Docker, Inc. plans to embed the ability to dynamically generate a software bill of materials (SBOM) using the Docker Build command that developers use to build Docker images from a Dockerfile. Company ...
Anchore Extension Can Generate SBOMs for Container Apps
Anchore today added an extension to its software supply chain management platform for container-based applications that can automatically generate and continuously update a software bill of materials (SBOM). Kim Weins, senior vice ...
