software supply chain Archives

CleanStart Takes Aim at BusyBox to Harden Container Security

Container security faces a significant "inheritance risk" through BusyBox, a legacy utility package embedded in popular base images. CleanStart addresses this with a new BusyBox-free container architecture, replacing inherited userspace utilities with ...

Tom Smith | April 8, 2026 | Alpine Linux Alternative, Build-time Validation, BusyBox-free, CleanStart, container security, Deterministic Runtime, DevSecOps, minimal container images, SBOM, software supply chain

The Cyber Resilience Act and Cloud Native: Understanding the Impact

How the EU Cyber Resilience Act will impact Kubernetes, containers and cloud native supply chains ahead of the 2027 enforcement deadline ...

Jacob Mammoliti | March 13, 2026 | container security, Cyber Resilience Act, kubernetes, SBOM, software supply chain, Vulnerability Management

TLS, certificates, Docker, vulnerabilities, supply chain, KubeCon, SigStore, Kubernetes TrapX container security

The Missing Control Plane in Cloud-Native Supply Chains

Explore how an artifact access plane can improve Kubernetes platform performance, scalability, and security by standardizing how artifacts are governed and delivered, aligning with CNCF ecosystem initiatives ...

Adrian Herrera | March 4, 2026 | artifact access plane, artifact decentralization, artifact firewall, artifact flow optimization, artifact governance, cloud infrastructure, cloud-native platforms, CNCF ecosystem, developer velocity, devops, GitOps, kubernetes, OCI artifacts, platform resilience., software supply chain, Virtual Registry

edge, containers, containerization, containers, Edara, Buildpacks, container, dockerfiles, time, containers, security, and, Docker, DevOps, docker containers, python, add-ons, kubernetes, Chainguard Docker container Stormforge Azure containers Microsoft New Relic Java Kublr platform Containers on Azure

BellSoft’s 3-in-1 Strategy for Container Security

BellSoft debuts Hardened Images for Kubernetes, reducing vulnerabilities with locked, lightweight containers built on Alpaquita Linux and Liberica JDK for secure performance ...

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution

The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...