InfoQ Homepage Containers Content on InfoQ
-
Google Cloud Adds New PCI DSS Policy Bundle to Anthos Config Management
Google has recently added Payment Card Industry Data Security Standard (PCI DSS) Policy bundle to Anthos Config Management (ACM). In its version 3.2.1, security administrators can now understand compliance with PCI DSS requirements using the Policy Controller Dashboard.
-
HashiCorp Nomad Adds SSO Support and Dynamic Metadata
HashiCorp has released version 1.5 of Nomad, currently in beta. Nomad is their orchestrator platform for deploying and managing both containerized and non-containerized environments. This release adds single sign-on and OIDC support as well as dynamic node metadata, job templates, and UI improvements.
-
CloudNativeSecurityCon 2023: SBOMs, VEX, and Kubernetes
At CloudNativeSecrityCon 2023 in Seattle, WA, Kiran Kamity, founder and CEO of Deepfactor, led a panel discussion on software supply chain security, the practical side of SBOMs, and VEX.
-
Falco Project v0.34 Released: OSS Security Tool Adds Downloadable Rules and eBPF Probe
Falco, an open-source runtime security tool, recently announced their latest release version 0.34.0. Highlights of the latest release include support for older RHEL distros, the ability to download and update Falco rules at runtime, and the experimental release of a modern eBPF probe.
-
Amazon Releases Elastic Kubernetes Service for Snowball Edge
Amazon has released Amazon Elastic Kubernetes Service (EKS) Anywhere on Snow. This release automates the creation and management of EKS clusters on AWS Snowball Edge devices. These devices are able to run with or without an internet connection.
-
Containerd Adds Support for a New Container Type: Wasm Containers
The runwasi project, written in Rust, became an official contained project, which enables containerd to support a new container type: Wasm (or WebAssembly) containers.
-
CloudNativeSecurityCon 2023: Identifying Suspicious Behaviors with eBPF
At CloudNativeSecrityCon 2023 in Seattle, WA, Jeremy Cowan and Wasiq Muhammad, both engineers at AWS, presented on identifying suspicious behaviors with eBPP, its use cases, and how AWS is using it for threat detection and protection.
-
Service Mesh Kuma Improves Policy Handling and Debugging Experience
Kuma, a service mesh technology, released version 2.1 with improved policies and an updated UI. The improved policies build upon the 2.0 release and move the remaining policies over to the new targetRef system. The targetRef system provides an improved matching system for defining policies.
-
gopaddle, a Low Code Internal Developer Platform for MicroK8s and Edge
gopaddle is a low-code internal developer platform (IDP) for MicroK8s edge cloud. It aims to simplify and accelerate the development of edge cloud applications by providing a web-based interface to Kubernetes developers for creating, deploying, and managing applications.
-
Kubefirst Platform Improves Local Experience and Password Management
Kubefirst, an open-source infrastructure application platform, recently released version 1.11. This version adds improved support for their local installation including a new local DNS implementation, enables Traefik ingress controller for local installs, and adds trusted local TLS certificates.
-
CNCF Kicks off CloudNativeSecurityCon NA 2023
The Cloud Native SecurityCon North America 2023 kicked off this week in Seattle. The first dedicated event focused on Cloud Native Security with over 800 attendees, 70 sessions, 50 sponsors, and vendors organized by the Cloud Native Computing Foundation (CNCF).
-
Google Boosts Sandboxed Container File System Performance by Improving gVisor
Google improved the file system implementation in gVisor, the open source isolation layer used in its commercial container-oriented offerings, such as App Engine, Cloud Run, and Cloud Functions. According to Google engineers Ayush Ranjan and Fabricio Voznika, the new gVisor file system, dubbed VFS2, may improve performance of file-intensive workloads by 50%-75% approximately.
-
Docker BuildKit Adds Support for Supply Chain Security Practices and Cache Backends
Docker has released version 0.11 of BuildKit, the Docker backend for building images. The release adds a number of new features including attestation creation, reproducible build improvements, and cloud cache backend support.
-
GCP Adds Simplified Operator for Connecting Google Kubernetes Engine to Cloud SQL
Google Cloud has released a public preview of Cloud SQL Proxy Operator. The operator simplifies the process of connecting an application running in Google Kubernetes Engine with a database deployed in Cloud SQL.
-
Kubernetes Java Client 17.0 Provides Support for Kubernetes 1.25
Kubernetes Java Client supports the Kubernetes API and the current release 17.0.0 supports version 1.25 of the Kubernetes API. The client is able to dynamically retrieve information, for example for monitoring purposes, and allows changing and deleting items in the Kubernetes cluster. The Kubernetes client may be used as an alternative for the command line Kubernetes tool: kubectl [argument].