November 2023

Generating Kubernetes ValidatingAdmissionPolicies from Kyverno Policies

In the previous blog post, we discussed writing Common Expression Language (CEL) expressions in Kyverno policies for resource validation. CEL was first introduced to Kubernetes for the Validation rules for CustomResourceDefinitions, and then it was used by Kubernetes ValidatingAdmissionPolicies in 1.26. ValidatingAdmissionPolicies offer a declarative,…

0

Cloud Native Policy Management with Nirmata: A Reflection of KubeCon NA 2023

KubeCon NA 2023: A Brief Overview The Cloud Native Computing Foundation’s flagship conference KubeCon, known for its extensive schedule of talks, workshops, and networking opportunities, brought together thousands of developers, practitioners, and enthusiasts to discuss the latest trends, share insights, and foster collaboration within the…

0

Modern Security for Modern Apps

This post was first published at https://tfir.io/modernizing-security-modern-security-for-modern-apps/ Cloud native technologies have paved the path to modernizing applications. Containers provide standard packaging, and Kubernetes provides the orchestration. However, security practices have not evolved in order to account for the new reality of cloud first and recent…

0

Mitigating the Latest Kubernetes NGINX Ingress Controller CVEs

Recently, a few new vulnerabilities for Kubernetes Nginx Ingress controllers have made their way across industry channels, showcasing how much of a challenge securely configuring Kubernetes can be. The vulnerabilities, tracked as CVE-2023-5043, CVE-2023-5044 and CVE-2022-4886, were disclosed on October 27, and are listed as…

0