InfoQ Homepage Cloud Native Computing Foundation Content on InfoQ
-
Diagrid Launches Catalyst, a Serverless, Fully-Managed Dapr Offering
Today Diagrid announced the launch of a managed Dapr offering, the industry's first set of APIs focused on eliminating fragmentation when building distributed applications.
-
Microsoft Announces Radius: a New Open Application Platform for the Cloud
Microsoft has recently announced Radius, a cloud-native application platform designed to facilitate collaboration between developers and platform engineers who assist them in delivering and managing cloud-native applications. This platform ensures that these applications adhere to corporate standards for cost-efficiency, operational efficiency, and security as the default approach.
-
CRI-O Graduates from CNCF, Sees Increased Adoption in Cloud Native Environments
The Cloud Native Computing Foundation announced the graduation of the CRI-O project which provides a secure, performant, and stable Container Runtime Interface (CRI) implementation for kubelet in Kubernetes production environments. The project has been adopted by seven new organizations, released 11 new minor versions, and had more than 4,000 commits to the main branch.
-
LF Asia & CNCF Kick off KubeCon+CloudNativeCon+Open Source Summit China 2023
KubeCon + CloudNativeCon + Open Source Summit China 2023 kicked off this week in Shanghai. It’s the premier event for developers, technologists, and technology leaders in Asia concerning all things Open Source, Kubernetes, and Cloud Native. The event attracted over 2000 attendees and 20 sponsors and included 150 sessions.
-
Kubernetes 1.28 Released with New Repositories and Fixes for Privilege Escalation in Windows
The Cloud Native Computing Foundation (CNCF) released Kubernetes 1.28 named Planternetes. The release has new features such as mixed version proxy, support for CDI injection into containers, and sidecar container awareness.
-
OpenTelemetry Protocol (OTLP) 1.0.0 Released
Recently, the OpenTelemetry Protocol (OTLP) 1.0.0 was released. OLTP specification describes telemetry data's encoding, transport, and delivery mechanism between telemetry sources, intermediate nodes such as collectors, and telemetry backends. It is a general-purpose telemetry data delivery protocol designed in the scope of the OpenTelemetry project.
-
KSOC Labs Release the First Kubernetes Bill of Materials (KBOMs)
KSOC labs recently announced the release of the first Kubernetes Bill of Materials(KBOMs). KBOM is an open source standard and command-line tool that helps security teams quickly analyze cluster configurations and respond to CVEs. The project includes an initial specification and implementation that works across cloud providers, on-prem, and DIY environments.
-
Upbound Releases Managed Control Plane Service
Upbound, the creators of Crossplane, has released a fully-managed control plane based on Crossplane. Crossplane is a Cloud Native Computing Foundation incubating project that provides a low-code experience for building control planes. Upbound Managed Control Planes (MCPs) manage the control plane components and provide access via both a UI and a CLI.
-
Kubernetes 1.27 Released with Freeze on Legacy Image Registry and In-Place Update of Pod Resources
The Cloud Native Computing Foundation (CNCF) released Kubernetes 1.27 with the name chill vibes. The release has new features, such as In-place Update of Pod Resources, Limit of Parallel Image Pulls, and Multiple Service CIDRs.
-
Amazon GuardDuty Adds EKS Runtime Monitoring and RDS Protection
Amazon GuardDuty added Amazon EKS Runtime Monitoring and RDS Protection for Amazon Aurora. EKS Runtime Monitoring can detect runtime threats from over 30 different security findings. RDS Protection adds support for profiling and monitoring access activity to Aurora databases.
-
KubeEdge Achieves SLSA Level 3 Compliance
KubeEdge, a CNCF incubating project, recently met the Supply Chain Levels for Software Artifacts (SLSA) 3 compliance. SLSA 3 certifies the end-to-end security of KubeEdge's software supply chain process, ensuring that binary and container image artifacts are protected from malicious tampering.
-
CloudNativeSecurityCon 2023: SBOMs, VEX, and Kubernetes
At CloudNativeSecrityCon 2023 in Seattle, WA, Kiran Kamity, founder and CEO of Deepfactor, led a panel discussion on software supply chain security, the practical side of SBOMs, and VEX.
-
How Yahoo Secures Their Software Supply Chain at Scale: CloudNativeSecurityCon 2023
At CloudNativeSecrityCon 2023 in Seattle, WA, Hamil Kadakia and Yonghe Zhao, software engineers at Yahoo’s security team, presented on securing Software Supply Chain at Scale, and how to put together policies to safeguard against Supply Chain attacks.
-
Containerd Adds Support for a New Container Type: Wasm Containers
The runwasi project, written in Rust, became an official contained project, which enables containerd to support a new container type: Wasm (or WebAssembly) containers.
-
CloudNativeSecurityCon 2023: Identifying Suspicious Behaviors with eBPF
At CloudNativeSecrityCon 2023 in Seattle, WA, Jeremy Cowan and Wasiq Muhammad, both engineers at AWS, presented on identifying suspicious behaviors with eBPP, its use cases, and how AWS is using it for threat detection and protection.