Kyverno crosses 4.4K ⭐️s. Thanks for the love and support!

github.com/kyverno/kyvern…

If you like Kyverno, make sure you give it a star, so we can continue delivering value!

We are prepping v1.11 and have some exciting updates planned. Stay tuned!

#Kubernetes #devops

Heads up 👀 cosign v2.11 just shipped 🎉 github.com/sigstore/cosig…

💰 The average salary for a Kubernetes engineer is €82,554 in Europe & $133,918 in North America

🤩 GitLab CI more popular the Jenkins

🏢 64% drop in remote-only working

More in the state of the Kubernetes job market: kube.careers/kubernetes-tre…

Implemented the Keyless signing for 🦊 GitLab, and we deployed it in the sigstore Staging environment. Now you can keyless sign your containers and blobs in a GitLab Pipeline 🎉. Check a simple example of how to do that gitlab.com/cpanato/testin…

'Compliance over security leads to malicious compliance. We should always pick security, together' Duffie Cooley

Want to become a Kubernetes
contributor? Come meet the wonderful folks working on the different SIGs next Friday at the SIG Meet and Greet!

It is sad that it is always scheduled the last day of Kubecon but we are happy to meet you :)

w00t! version 1.5 of fulcio! github.com/sigstore/fulci…

🚨 Big news today, we have open sourced the pipeline that builds the Grype vulnerability database. Now you can run your own database and implement your own data sources.

Check out the details here:

anchore.com/blog/build-you…

'Containers are secure by default, right?' 🫣

There are two categories of concerns for container security:

- Image security (What vulns exist in the image that someone could exploit?)
- Runtime security (What might an attacker be able to do if they gain access?)

1/N

Is Docker saying that the OSS openfaas organisation on Docker Hub will get deleted if we don't sign up for a paid plan?

What about Prometheus, and all the other numerous OSS orgs on the Docker Hub?

cc Justin Cormack

It is exciting to see #OSV vulnerability alerts supported in RenovateBot, a widely adopted OSS dependency update solution (similar to native Dependabot). The feature is behind an experimental flag & look forward to community feedback (see bug link at end) -docs.renovatebot.com/configuration-…

keyless signing now enabled by default! some of the many features included as part of the 2.0 release of sigstore cosign #security #supplychain blog.sigstore.dev/cosign-2-0-rel…

Announcing SLSA v1.0 Release Candidate slsa.dev/blog/2023/02/s… Requesting community feedback on the RC Specification by March 24, 2023, with a view towards releasing a 1.0 Stable revision at the end of March

Join the upcoming CNCF livestream on Kyverno 1.9!

community.cncf.io/events/details…

#Kubernetes #DevOps

Join the coomunity now on #softwaresupplychainsecurity twitter.com/i/communities/…

In this article, you will learn how to detect Kubernetes API deprecations with Pluto — a utility to help users find deprecated Kubernetes API versions in their code repositories and their helm releases

➤ dev.to/fkurz/detectin…

Today I released @Kyverno Policy Reporter Helm v2.14.0 🎉 with new features and improvements.
🗒️ New Kyverno HTML Reports
📈 Customize metrics and filter by adding labels based on PolicyReport labels.

more details: github.com/kyverno/policy…

#Kubernetes #security #observability