Blog

By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) CNCF maintains a high level of security for its projects by way of a series of initiatives such as security auditing, supply-chain assessments and...

Community blog post by Sascha Grunert, CRI-O maintainer The Node Resource Interface (NRI) allows users to write plugins for Open Container Initiative (OCI) compatible runtimes like CRI-O and containerd. These plugins are capable of making controlled changes to containers at dedicated points in...

Project post originally published on Github by Sascha Grunert The CRI-O maintainers are happy and proud to announce that CRI-O v1.31.0 has been released! This brand new version contains a large list of cool new features, bug fixes...

Congratulations to CNCF’s 2024 Term 1 (March – May) LFX Program mentees who have finished the program successfully! Following a three-month program working with 28 different Graduated, Incubating, and Sandbox projects, including Antrea, Istio, KubeEdge, OpenTelemetry,...

Community blog by Seven Cheng WebAssembly (Wasm) was originally created for the browser, and it has become increasingly popular on the server-side as well. In my view, WebAssembly is gaining popularity in the Cloud Native ecosystem due...

We are thrilled to congratulate 34 mentees who have successfully graduated from the LFX Program after working with various CNCF projects over the last three months!     Mentees had the opportunity to work on many different projects...

Guest post originally published on ARMO’s blog by Ben Hirschberg, CTO & Co-founder at ARMO With each release, Kubernetes introduces new features and enhancements to improve the user experience and address the evolving needs of its users. Today’s...

By Chris Aniszczyk, Vivian Hu and Michael Yuan “Containers are the new normal, and WebAssembly is the future.”   — CNCF Annual Survey 2022 key findings. Originally created as a secure sandbox to run compiled C/C++...

By Chris Aniszczyk (@cra) and Rey Lejano In 2018, the Cloud Native Computing Foundation (CNCF) started performing and open sourcing third-party security audits with the goal of improving the overall security practices of our ecosystem. Since...

Guest post originally published on ARMO’s blog by Ben Hirschberg All the main K8s vulnerabilities from 2022 consolidated into one article. Put together by Ben Hirschberg, CTO & co-founder of ARMO. During 2022, Kubernetes continued to cement itself...

By Chris Aniszczyk (CNCF), Adam Korczynski (Ada Logics), David Korczynski (Ada Logics) In this blog post we present an overview of the state of fuzzing across CNCF projects. This is based on efforts and work that...

Community post originally published on the OSTIF blog Open Source Technology Improvement Fund is thrilled to report the results of a security audit of CRI-O. CRI-O is an open source software (OSS) project that is an implementation of the Kubernetes Container...

Community post originally on the Ada Logics blog by David Korczynski, Security Research & Security Engineering and Adam Korczynski, Security Engineering & Security Automation, Ada Logics Ada Logics Ltd. recently performed a holistic security audit of CRI-O....

Guest post originally published on Medium by Michael Yuan WebAssembly was originally created for the browser. But like Java and JavaScript before it, once it gained support from the community (esp standardization and toolchain support), WebAssembly...

Today, the CNCF Technical Oversight Committee (TOC) voted to accept KubeEdge as an incubation-level hosted project. KubeEdge is an open source system for extending containerized application orchestration capabilities to hosts at the edge. It is built...

This blog post was first published on suse.com by Sascha Grunert. This series of blog posts and corresponding talks aims to provide you with a pragmatic view on containers from a historic perspective. Together we will discover...

Today, the Cloud Native Computing Foundation (CNCF) Technical Oversight Committee (TOC) voted to accept CRI-O as an incubation-level hosted project. CRI-O, created by Red Hat, is an implementation of the Kubernetes Container Runtime Interface (CRI) designed...