software supply chain
CleanStart Takes Aim at BusyBox to Harden Container Security
Container security faces a significant "inheritance risk" through BusyBox, a legacy utility package embedded in popular base images. CleanStart addresses this with a new BusyBox-free container architecture, replacing inherited userspace utilities with ...
The Cyber Resilience Act and Cloud Native: Understanding the Impact
How the EU Cyber Resilience Act will impact Kubernetes, containers and cloud native supply chains ahead of the 2027 enforcement deadline ...
The Missing Control Plane in Cloud-Native Supply Chains
Explore how an artifact access plane can improve Kubernetes platform performance, scalability, and security by standardizing how artifacts are governed and delivered, aligning with CNCF ecosystem initiatives ...
BellSoft’s 3-in-1 Strategy for Container Security
BellSoft debuts Hardened Images for Kubernetes, reducing vulnerabilities with locked, lightweight containers built on Alpaquita Linux and Liberica JDK for secure performance ...
CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution
The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...
Enhancing Kubernetes Security in Your Software Supply Chains With TLS certificates
Utilizing TLS certificates properly in your software supply chains can help decrease the chances of a cybersecurity incident, such as a supply chain attack or a man-in-the-middle attack ...
Sweet Security Unfurls Cloud-Native Runtime Protection Platform
Sweet Security today launched a Cloud Runtime Security Suite platform for securing cloud-native application runtimes ...
Chainguard Adds Automatic SBOM Generation Capability
Chainguard added an ability to automatically generate an SBOM for containers to its Enforce control plane to secure cloud-native applications ...
Why You Need a Kubernetes Bill of Materials (KBOM)
You’ve probably heard of software bills of materials (SBOMs). And you may already be familiar with infrastructure bills of materials (IBOM) as well. Both ideas are garnering much attention lately as a ...
Sigstore Sets Out to Secure Cloud-Native Supply Chain
Open source software (OSS) is pervasive — 90% of companies are now using OSS. But this reliance is a double-edged sword. Amid rising software supply chain attacks, we’re witnessing the fragility of ...
