Guest post originally published on Flux’s blog by Daniel Holbach Here comes the newest blog post in our ecosystem category. One of the key reasons to rewrite Flux was to break up the former monolith solution into separate controllers... ⌘ Read more
Guest post originally published on Flux’s blog by Daniel Holbach Here comes the newest blog post in our ecosystem category. One of the key reasons to rewrite Flux was to break up the former monolith solution into separate controllers... ⌘ Read more
Community post by Andres Vega from ControlPlane and Michael Crenshaw from Argo CD Argo CD provides deployment flexibility, which enables operators to configure it to varying situations. The new report by ControlPlane provides a comprehensive threat modeling analysis... ⌘ Read more
During KubeCon Detroit 2022,the maintainers of LitmusChaos announced the start of 3.0 Beta, with several planned enhancements to make the chaos platform more robust, leaner and developer-friendly. In short, make it more effective and helpful for teams trying... ⌘ Read more
The subsidiary designing technology for the automotive giant now runs nearly 1,000 Kubernetes clusters in production AMSTERDAM, The Netherlands – KubeCon + CloudNativeCon Europe – April 21, 2023 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable... ⌘ Read more
To continue efforts to improve the security of our graduated and incubating projects, we recently worked with Chainguard to assess the software supply chain security practices of two of our graduated projects, Argo and Prometheus. These efforts build... ⌘ Read more
Today we’re thrilled to announce 155 new Cloud Native Ambassadors for the Spring 2023 term! The new diverse group of Ambassadors represents 124 companies across 37 countries – meet all the new Ambassadors here. The new Cloud Native... ⌘ Read more
As cloud native technologies become ubiquitous among enterprises, CNCF continues to grow its influence and reach AMSTERDAM, The Netherland – KubeCon + CloudNativeCon Europe – April 19, 2023 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable... ⌘ Read more
By Chris Aniszczyk (@cra) and Rey Lejano In 2018, the Cloud Native Computing Foundation (CNCF) started performing and open sourcing third-party security audits with the goal of improving the overall security practices of our ecosystem. Since then, Argo,... ⌘ Read more
Market leader in cloud-enabled transformation doubles down on cloud native investment AMSTERDAM, The Netherlands – KubeCon + CloudNativeCon Europe – April 19, 2023 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software,... ⌘ Read more
Project post originally published on the Buildpack’s blog by Juan Bustamante Our adopters and contributors have grown substantially over the last several years, but until now the Cloud Native Buildpacks project has not had a structure that would... ⌘ Read more
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving Security by... ⌘ Read more
Project post by the Kyverno maintainers Kyverno is a policy engine built for Kubernetes that helps secure and automate Kubernetes configurations. In Kubernetes policies are configurations that govern the configuration and runtime behaviors of other resources. Kubernetes’ declarative... ⌘ Read more
By Jonathan Berkhahn, Operator Framework Steering Committee We are pleased to announce Java Operator SDK (JOSDK) is joining Operator Framework as an official subproject. Java Operator SDK JOSDK consists of a high-level framework for implementing operators in Java,... ⌘ Read more
Market leader in cloud-enabled transformation doubles down on cloud native investment AMSTERDAM, The Netherlands – KubeCon + CloudNativeCon Europe – April 17, 2022 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software,... ⌘ Read more
Project post originally published on the Istio blog by Bernard Van De Walle, Splunk + Mitch Connors, Aviatrix With dozens of tools for securing your network available, it is easy to find tutorials and demonstrations illustrating how these... ⌘ Read more
By the Cloud Native Explorers Building on the success of “Bob and Jeefy’s Guide to Detroit”, we are pleased to announce Cloud Native Explorers! Cloud Native Explorers is a new blog series where we bring together community members... ⌘ Read more
In modern tech stacks, CI/CD enables GitOps. With so many organizations using CD and GitOps practices and technologies to build new features quickly, reliably, and securely, it was a natural evolution for the CNCF and CD Foundation to... ⌘ Read more
Project post originally published on the Flux blog by Daniel Holbach As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are... ⌘ Read more
Project post by Gaius, Dragonfly Maintainer Terms and definitions Term Definition OCI The Open Container Initiative is a Linux Foundation project launched by Docker in June 2015 to design open standards for operating system-level virtualization (and most importantly... ⌘ Read more
Guest post by Da Yin, infra engineer at Alibaba Cloud and KubeVela maintainer Background With the release of v1.8, KubeVela, the OAM-based application delivery project, has been continuously evolving for over 3 years. It is now being adopted... ⌘ Read more
By the CNCF Marketing Committee + CNCF Staff KubeCon + CloudNativeCon Europe 2023 is just days away, and with more than 10,000 folks attending, this event is the Cloud Native community’s largest in Europe to date. Networking is... ⌘ Read more
Community post by Josh Gavant and Abby Bangser, CNCF’s Platforms WG CNCF’s Platforms working group (WG) is pleased to announce the first release of a whitepaper to provide guidance and clarity on the nature and benefits of platforms... ⌘ Read more
The CNCF Technical Oversight Committee (TOC) has voted to accept Keycloak as a CNCF incubating project. Keycloak is an Identity and Access Management (IAM) solution providing centralized authentication and authorization to applications and APIs. It provides a complete,... ⌘ Read more
Community post by Ragashree M C, CNCF Security Technical Advisory Group CNCF Security Technical Advisory Group is excited to announce the release of the audio version of our flagship whitepaper, Cloud Native Security Whitepaper v2. As more and... ⌘ Read more
Project post by Prithvi Raj, Community Leader, LitmusChaos KubeCon + CloudNativeCon EU 2023 kicks off in Amsterdam a couple of weeks from now from April 18-21. After a fantastic couple of days at Chaos Carnival 2023, the LitmusChaos... ⌘ Read more
Guest post originally published on the Bouyant blog by Michael Levan When you deploy a pod, do you know if your application is running how you want it to? Is its traffic encrypted? Is your application performing as... ⌘ Read more
After announcing the KubeDay series last year with KubeDay Japan, which happened in December of last year, we are thrilled to announce KubeDay Israel on 19 June in Tel Aviv. Join us in Tel Aviv for a day... ⌘ Read more
Guest post by Zhongpei Qiao of Alibaba and KubeVela The continuous maturity of cloud native technology has allowed numerous infrastructure capabilities to be directly utilized by business applications. However, many developers have struggled with the high learning curve... ⌘ Read more
Guest post originally published on the Signadot blog by Arjun Iyer and Scott Cotton Introduction Asynchronous architectures are common in cloud native applications as it decouples services and improves the scalability and reliability of the system. A message... ⌘ Read more
Community post by Leonard Pahlke There are numerous ways to start your open source project. You may already have a working product, a team behind it, proper documentation and guides, or you may just have an idea and... ⌘ Read more
Guest post by Da Yin, engineer at Alibaba Cloud and maintainer of KubeVela Background Dating back to year 2019, Kubernetes is gradually being widely adopted as the de facto standard for deploying and managing infrastructures. More and more... ⌘ Read more
Community post by Adam Korczynski, David Korczynski, and Martin Hickey In the past year, the team at Ada Logics has worked on integrating continuous fuzzing into the Helm core project. This was an effort focused on improving the security posture of... ⌘ Read more
Guest post by Daria Kulikova, Software writer at Xopero Ransomware attacks, human mistakes, outages of Atlassian, GitHub or GitLab – all of them lead to data and financial losses. And, unfortunately, the news about lost credentials, data leakages,... ⌘ Read more
Guest post originally published on Grafana Labs’ blog Kubernetes makes it easier for businesses to automate software deployment and manage applications in the cloud at scale. However, if you’ve ever deployed a cloud native app, you know how... ⌘ Read more
Community post by Michael Cade Introduction — what is Kubernetes Storage? Kubernetes storage is a way to manage persistent data in a Kubernetes environment. Kubernetes storage can be used to store data that is independent of the container’s... ⌘ Read more
Community post by Josh Berkus Whether you are organizing a Kubernetes Community Day or any other community event, one of your goals is to have both diverse speakers and audience. For any CNCF-hosted event, it’s not just preferable,... ⌘ Read more
Guest post by Jesse Meng and Qiming Hu, Tencent Introduction Do you know? The Arctic is so hot that you can wear short sleeves, with temperatures soaring to 32.5 degrees Celsius. Scientists say that many species have reached... ⌘ Read more
Community post originally published on the Crossplane blog by Adam Korczynski and Jared Watts Crossplane is happy to announce the successful completion of our fuzzing security audit. The work was carried out by the team at Ada Logics... ⌘ Read more
Guest post originally published on ARMO’s blog by Oshrat Nir, Head of Product Marketing at Armo Learn about Kubernetes compliance challenges, consequences of non-compliance, and get guidance on maintaining a secure and compliant cloud environment in a dynamic... ⌘ Read more
Guest post originally published on the Nirmata blog by Jim Bugwadia Introduction In Kubernetes, policies are a special type of configuration resource that control other configuration or runtime behaviors. For example, a simple policy declaration may be, “HTTP... ⌘ Read more
Community post by Riaan Kleinhans, Technical Project Manager at ii.nz Three years ago, I ventured into the open source world and quickly discovered that community members yearn for more people to join their ranks. Likewise, many outsiders are... ⌘ Read more
Community post by Eric Han and Arun Gupta Every kid loves Minecraft! Sharing a bus ride at KubeCon + CloudNativeCon in Valencia, a group of us shared how immersed our kids have been in Minecraft, whether that’s playing... ⌘ Read more
Community post by Jose Rodriguez Roa & Cuemby Marketing team Latin America and cloud native technology have developed a growing affinity over the years, as cloud computing has become increasingly popular and accessible in the region. Cloud native... ⌘ Read more
Community post by Adam Korczynski, David Korczynski, and Feynman Zhou The Notary Project is happy to announce the completion of its fuzzing security audit. The audit was carried out by Ada Logics and is part of an initiative... ⌘ Read more
Project post originally published on Github by Dragonfly maintainers Dragonfly v2.0.9 is released! 🎉🎉🎉 Thanks to the Google Cloud Platform (GCP) Team, Volcano Engine Team, and Baidu AI Cloud Team for helping Dragonfly integrate with their public clouds.... ⌘ Read more
Guest post by Andrew Stiefel, Manager of Product Marketing for Secure API Connectivity Solutions at NGINX, part of F5 By now, most Platform Ops teams are familiar with API sprawl – shorthand for the compounding challenges enterprises face... ⌘ Read more
Guest post originally published on the Fairwinds blog by Danielle Cook Traditional approaches to governance, such as Information Technology Infrastructure Library (ITIL) approaches that created a set of detailed practices for IT service and asset management, were overly... ⌘ Read more
Community post originally posted on Neon Mirrors by Chip Zoller It seems just about everyone is doing GitOps in Kubernetes these days. With so many available tools and the maturity of them, it’s hard to avoid it. But... ⌘ Read more
CNCF is excited to announce that the schedules for the CNCF-hosted co-located events at KubeCon + CloudNativeCon Europe 2023 are live@ Schedules Registration This year, attendees had the opportunity to register for an In-person All-Access pass, which includes... ⌘ Read more
Guest post by Rodrigo Rocha In the past few years, many companies have moved to the cloud. It’s a movement that offers many benefits for businesses, but these benefits come with increased risk and vulnerabilities. Before we continue... ⌘ Read more
image ⌘ Read more
Guest post originally published on Istio’s blog by John Howard and Lin Sun Istio ambient service mesh was launched in Sept 2022 in an experimental branch, introducing a new data plane mode for Istio without sidecars. Through collaboration with the... ⌘ Read more
This year, CDF and CNCF join forces to bring attendees the best Continuous Delivery and GitOps content available SAN FRANCISCO, March 13, 2023 – The Continuous Delivery Foundation (CDF), which seeks to improve the world’s capacity to deliver... ⌘ Read more
By Chris Aniszczyk and Amir Montazery CNCF and Open Source Technology Improvement Fund (OSTIF) have been working together for the last several years to conduct security audits for CNCF’s Graduated and Incubating projects. As a result of CNCF’s... ⌘ Read more
Guest post also published on the Grafana Labs blog by Hrittik Roy Kubernetes, a graduated project of the Cloud Native Computing Foundation (CNCF) ecosystem, is the most prominent and widely used container orchestration systems. It’s used to manage and deploy... ⌘ Read more
image ⌘ Read more
Guest post by Saim Safdar We are excited to announce that we have successfully executed Kubernetes Community Days Pakistan. We had appearances from the first certified CKA women in Pakistan, speakers from Spain, New Zealand, India, Peru, USA,... ⌘ Read more
IoT Edge Working Group Produces Edge Native Applications Principles Whitepaper In edge computing environments, compute, connectivity, storage, and power are all constrained, necessitating new approaches and a new set of edge native principles to develop for these environments.... ⌘ Read more
Every cloud native journey begins with provisioning—the tools responsible for automatically configuring, creating, and managing cloud native infrastructure. Technology leaders must navigate the CNCF Landscape’s provisioning layer—which includes mission-critical subcategories like automation & configuration, container registries, security &... ⌘ Read more
Guest post by Tian Ye of DatenLord The purpose of this article is to provide readers who have not been exposed to formal methods with a new perspective on computer systems and algorithms, rather than formal methods or... ⌘ Read more
Community post originally published on Medium by Mathieu Benoit I wanted (needed?) to give Kyverno a try, to learn more about it. Here we are! When I was attending KubeCon NA 2022, I noticed the maturity and importance of Kyverno. Concrete... ⌘ Read more
Guest post originally published on the Ozone blog by Abhilash “Gartner expects that by 2026, 80% of software engineering organizations will establish platform teams as internal providers of reusable services, components, and tools for application delivery.”1 Gartner Insights.... ⌘ Read more
Project post originally published on the Flux blog by Daniel Holbach As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are... ⌘ Read more
Guest post by Dylen Turnbull, F5 NGINX Solution Architect GitOps as a sandwich line for developers Following on the heels of DevOps and Platform Ops, we now have GitOps – a new stylish way to set up and... ⌘ Read more
Community post by Adam Korczynski and Phil Estes The containerd project is happy to announce the completion of a comprehensive fuzzing audit which added 28 fuzzers covering a wide range of container runtime functionality. During this audit a... ⌘ Read more
The CNCF Technical Oversight Committee (TOC) has voted to accept OpenKruise as a CNCF incubating project. OpenKruise is an extended component suite for Kubernetes focused on application automations like deployment, upgrade, ops, and availability protection. Most features provided... ⌘ Read more
Guest post originally published on the Nirmata blog by Chip Zoller One of the great new features in the recently-released Kyverno 1.9 is something we introduced called Policy Exceptions which decouples the policy itself from the workloads to which it applies. But... ⌘ Read more
Project post by the Vitess maintainers We are pleased to announce the general availability of Vitess 16. Major Themes in Vitess 16 Documentation improvements In this release the maintainer team has decided to put an emphasis on... ⌘ Read more
The CNCF Technical Oversight Committee (TOC) has voted to accept KubeVela as a CNCF incubating project. KubeVela is an application delivery engine built with the Kubernetes control plane that makes deploying and operating applications across hybrid and multi-cloud... ⌘ Read more
Guest post originally published on the SparkFabrik blog If you are familiar with the DevOps philosophy, you will certainly have heard of DevSecOps. It is an approach to security that is gaining momentum in line with the growing... ⌘ Read more
Community post by KubeEdge SIG-Security (Reprinted from the KubeEdge blog) In July 2022, the KubeEdge community completed a third-party security audit of KubeEdge[2] and released a paper on cloud native edge computing security threat analysis and protection. Based... ⌘ Read more
Community post by Leonard Pahlke Due to COVID-19, the Cloud Native Hamburg community was unable to organize face-to-face meetup for over two years. Luckily in 2023, this is changing, along with a few additional revisions to the previous... ⌘ Read more
Community post originally published on Medium by Dotan Horovitz Celebrating Israel’s First Kubernetes Community Days: A Look at the History of Our CNCF Community After over 30 community meetups of CNCF’s Israeli chapter in the past years, it’s... ⌘ Read more
Guest post originally published on the Miraxia blog by 川井拓真 Japanese version here. Few weeks ago, I was struggling to optimize the Vertical Pod Autoscaler performance. We’d been planning a presentation in my company, and it should be 5 to 10... ⌘ Read more
Community post by Zufar Dhiyaulhaq The Kubernetes and OpenInfra communities recently came together for a landmark event, Kubernetes Community Days & OpenInfra Days Indonesia 2022, held on November 26th – 27th in Jakarta, Indonesia This was the first... ⌘ Read more
Project post originally published on the Flux blog by Michael Bridgen Pulumi is an “Infrastructure as Code” tool that lets you specify your infrastructure as programs written in JavaScript, Python, Java, Go, .NET languages, or YAML. The Pulumi Kubernetes operator drives... ⌘ Read more
Guest post originally published on the Helios blog by Ran Nozik Developers can instrument their Go applications quickly and easily using Helios OpenTelemetry (OTel), the emerging industry standard for application observability and distributed tracing across cloud-native and distributed architectures,... ⌘ Read more
Project post from the Volcano maintainers Overview On KubeCon North America 2022, Krzysztof Adamski and Tinco Boekestijn from ING Group delivered a keynote speech “Efficient Scheduling Of High Performance Batch Computing For Analytics Workloads With Volcano” . The... ⌘ Read more
Guest post originally published on the Nirmata blog by Jim Bugwadia The Cloud Native Computing Foundation (CNCF) held the first ever standalone Cloud Native Security Conference in Seattle on February 1st and 2nd. Here are some of my... ⌘ Read more
Guest post by Charith Ellawala, Co-Founder & CTO at Cerbos Running an effective software engineering organization is a formidable task at the best of times. Being a startup – especially when the core product is software – adds... ⌘ Read more
Community post by Marco De Benedictis The Inaugural stand-alone CloudNativeSecurityCon North America was a slightly different event to the previous pre-KubeCon + CloudNativeCon instances. The cloud native security community came together from across the development and engineering spectrum... ⌘ Read more
Guest post originally published on The New Stack by José Cortes, Ambassador Labs In a microservice environment, your services will issue network requests to other services and applications, typically using Kubernetes’s DNS resolution mechanisms for service discovery. Easy... ⌘ Read more
In partnership with Razom for Ukraine, the Prometheus platform will host three Ukrainian-language Linux Foundation Training courses In October 2022 at KubeCon + CloudNativeCon North America, we announced that the Linux Foundation and the CNCF partnered with Razom... ⌘ Read more
Guest post by Nick Calibey, Senior Cloud Engineer, Timescale When we launched Timescale Cloud in 2020, our team supported a single cloud in a single region. As we grew, it became clear that we wouldn’t be able to... ⌘ Read more
Guest post by: One stop shop messaging bot for monitoring, notifying and edbugging anywhere, anytime. Bots have been around humans for a while now and used for variety of purposes. The most common ones are notification receivers through... ⌘ Read more
Project post by Liz Rice, Isovalent, for the Cilium project One of the benefits for CNCF projects is the funding of third-party security audits and testing. These help projects identify potential vulnerabilities in their code and process improvements... ⌘ Read more
Project post, cross-posted from the Linkerd blog by Flynn This blog post is based on a workshop I recently delivered at Buoyant’s Service Mesh Academy. If this seems interesting, check out the full recording! mTLS and Linkerd You don’t have... ⌘ Read more
Project post by the Volcano team By Volcano Team Volcano 1.7.0 is now available with the following new features: enhanced plugin for PyTorch Jobs, Ray on Volcano, enhanced scheduling for general Kubernetes services, multi-architecture images of Volcano, and... ⌘ Read more
Community pots by Juraj Hanták Four Years Ago, I Changed My Approach The story of the Bratislava cloud native community started almost four years ago when I returned from KubeCon + CloudNativeCon Europe 2019 in Barcelona. My mind... ⌘ Read more
Guest post originally published on the Coredge blog There has been a lot of discussion about the rising trend of businesses using private, public, and hybrid cloud services in their multi-cloud strategy. The architecture of multi-cloud allows enterprises... ⌘ Read more
CNCF is excited to announce that in partnership with the CD Foundation, we will be hosting cdCon + GitOpsCon, co-located with Open Source Summit North America, from May 8 – 9 in Vancouver, Canada@ We are combining cdCon... ⌘ Read more
Community post by Amir Montazery, OSTIF, cross-posted from OSTIF’s blog KEDA, or the Kubernetes-based Event Driven Autoscaling project, was reviewed by Trail of Bits at the end of 2022. KEDA joins a growing list of CNCF Projects audited... ⌘ Read more
Community post by Paolo Mainardi originally published on Paolo’s personal blog Thanks to the DALL·E 2, we finally have a very nice graphic representation of the feelings of a Docker container inside a macOS environment, I will try with this article... ⌘ Read more
Project post originally published on the Istio blog by Craig Box Security review of Istio finds a CVE in Go standard library Istio is a project that platform engineers trust to enforce security policy in their production Kubernetes... ⌘ Read more
Project post originally published on the Istio blog by Craig Box Security review of Istio finds a CVE in Go standard library Istio is a project that platform engineers trust to enforce security policy in their production Kubernetes... ⌘ Read more
Project post originally published on the Linkerd blog by Catherine Paganini Today we’re thrilled to announce the first-ever Linkerd Day! Linkerd Day will be held as a day zero conference at Kubecon EU in Amsterdam this April. Interested in... ⌘ Read more
Guest post from Deepfactor Because many organizations initially focus on the mechanism through which application code and infrastructure is scanned and analyzed for security insights, the result is often an anti-pattern, where a complex set of overlapping and loosely-integrated... ⌘ Read more
By Chris Aniszczyk (also on LinkedIn) I hope everyone had enjoyed the holidays with loved ones! The CNCF recently released its annual report on all the work we accomplished last year. I recommend everyone take an opportunity to go through... ⌘ Read more
Guest post originally published on ByteDance’s blog by Jun Zhang KubeGateway is a seven-layer load balancer specially customized by ByteDance for kube-apiserver traffic characteristics. It completely solves the problem of kube-apiserver load imbalance. For the first time in... ⌘ Read more
Guest post by Bill Mulligan Cilium has seen massive growth in both contribution and adoption in 2022. The 2022 Cilium Annual Report seeks to capture some of the Cilium project’s contributor and end user community growth and activities.... ⌘ Read more