Nirmata

Locked Doors, Untrusted Keys: Securing Containers in the Wake of Leaky Vessel Vulnerabilities

The recent buzz surrounding the actively exploited runc vulnerabilities “Leaky Vessels”  (CVE-2024-21626) serves as a timely reminder of two essential container security principles: image trust and comprehensive patching. Let’s delve into why these aspects are crucial for your containerized environments. Trustworthy Images are Foundational: It…

0

Generating Kubernetes ValidatingAdmissionPolicies from Kyverno Policies

In the previous blog post, we discussed writing Common Expression Language (CEL) expressions in Kyverno policies for resource validation. CEL was first introduced to Kubernetes for the Validation rules for CustomResourceDefinitions, and then it was used by Kubernetes ValidatingAdmissionPolicies in 1.26. ValidatingAdmissionPolicies offer a declarative,…

0

Cloud Native Policy Management with Nirmata: A Reflection of KubeCon NA 2023

KubeCon NA 2023: A Brief Overview The Cloud Native Computing Foundation’s flagship conference KubeCon, known for its extensive schedule of talks, workshops, and networking opportunities, brought together thousands of developers, practitioners, and enthusiasts to discuss the latest trends, share insights, and foster collaboration within the…

0