Deepfence misconfigured Kubernetes security

Deepfence Adds Managed Service to Secure Runtime Environments

Deepfence today at the KubeCon + CloudNativeCon Europe 2022 conference unveiled a managed cloud service through which IT teams can discover vulnerabilities in runtime environments. Owen Garrett, head of products and community ...
key management container security CNCF security secure Kubernetes

Best of 2021 – 7 Principles of DevSecOps With Kubernetes

As we close out 2021, we at Container Journal wanted to highlight the most popular articles of the year. Following is the eighteenth in our series of the Best of 2021. In ...
DevSecOps SRE Kubernetes

DevSecOps Essentials for Containers

DevSecOps has emerged as the preferred and necessary approach to secure modern applications by ensuring security practices are seamlessly integrated into the software development and delivery process in an automated fashion. While ...
Kubernetes service ownership

How DevSecOps Enabled Kubernetes Service Ownership

While it’s true software development is now among the most important industries in the country—if not the world—it is still undergoing its own transformation—especially with regards to DevOps, security and the emerging ...
OpenELB Anchore Grype API NetApp Spot

Anchore Delivers Container Security Integration for GitLab

Anchore has made its open source Grype vulnerability scanner tool for containers generally available for DevOps teams that are running the latest version of the GitLab continuous integration/continuous delivery (CI/CD) platform. Anchore ...
Cloud-Native Security Best Practices

Taking Cloud-Native Security to the Next Level

It’s no secret that containers and Kubernetes offer unparalleled speed and agility. As organizations look to the technology for the ability to scale and deliver modern applications, Gartner predicts containers will be ...
Kong Styra service mesh TriggerMesh Launches Open Source Knative Lambda Sources

Loft Labs Launches Open Source K8s Compliance Project

Loft Labs today launched jsPolicy as an open source project to enable compliance in Kubernetes environments to be achieved using code written in JavaScript. Lukas Gentele, Loft Labs CEO, says jsPolicy differs ...
Containers Security Gaps Priority

Containers Practices Gap Assessment

Containerizing software has proven benefits for DevOps value streams. To get the maximum value from containers, it is important to use recommended best practices, inclusive of people, processes and technologies. A gap ...
SUSE Siloscape security-as-code Docker

Leveling Up Container Security with Security-as-Code

As more organizations adopt a microservices deployment model, they’re also adopting infrastructure-as-code (IaC) to streamline continuous delivery. IaC codifies configurations to automate the deployment and provisioning of services. But how about security-as-code? ...
stateful kubernetes k8s Kublr

K8s and Cloud Security: Compliance Just Ain’t Enough

Over just two years, breaches caused by cloud misconfigurations exposed 33.5 billion records and generated an estimated $5 trillion in damages. Amid rising cyberattacks and novel vulnerabilities, overlooking cloud and K8s security ...