Security Policy as Code

cloud-native software policy Styra Shifts Kubernetes Policy Management Left

Securing the Software Supply Chain For Policy-as-Code

Since emerging as a graduated CNCF project last year, the Open Policy Agent (OPA) project has been adopted in a wide variety of scenarios: Kubernetes admission control (gatekeeper), policy enforcement over configuration ...
| | container security, OPA, open policy agent, Security Policy as Code
air-gapped, Kubernetes, air gapped SUSE container Weaveworks container security ThreatStack Qualys

Weaveworks Acquires Magalix to Secure GitOps in K8s Environments

Weaveworks today announced it has acquired Magalix to improve Kubernetes security within the context of a GitOps workflow. Financial terms of the deal were not disclosed. GitOps is a methodology for deploying ...
| | GitOps, Magalix, Security Policy as Code, Weaveworks
Fugue Code Analysis Finds Kubernetes

Fugue Adds Kubernetes Support to IaC Security Platform

Fugue today at the KubeCon + CloudNativeCon North America conference announced that its software-as-a-service (SaaS) platform for securing infrastructure-as-a-code (IaC) deployments now also supports Kubernetes clusters. Josh Stella, Fugue CEO, says that ...
| | compliance, Fugue, IaC, Security Policy as Code

NeuVector First to Bring “Security Policy as Code” to Kubernetes Workloads

DevOps and DevSecOps teams can now more quickly deliver secure cloud-native apps by using Kubernetes Custom Resource Definitions (CRDs) to define, manage, and automate application security policies throughout the CI/CD pipeline San ...
| | NeuVector, Security Policy as Code