The open-source platform for building serverless and event-driven applications, Knative, is entering the Cloud Native Computing Foundation (CNCF) as an incubating project. “Knative is a powerful technology that is well integrated with a variety of other CNCF projects and the cloud native ecosystem, making it easier to run serverless containers on Kubernetes,” said Chris Aniszczyk, … continue reading
Tricentis announced a number of updates, including Tosca 15, with which customers can manage their installation more easily and securely in the cloud with the Tosca server gateway. The new update service in Tosca 15 enables customers to more easily keep up with features by downloading individual engines or components of Tosca. “To help you … continue reading
Mizu is an API traffic viewer for Kubernetes that enables users to view all API communication between microservices to help debug and troubleshoot regressions. “Viewing API traffic between microservices is essential if you want to understand the root cause of problems found in complex distributed systems,” Alex Haiut, the co-founder and vice president of engineering … continue reading
Weaveworks acquired the policy-as-code startup Magalix to secure Kubernetes applications by integrating the solution into Weave GitOps. “Enterprise customers have made it clear that trusted application delivery is critical to the success of their increasingly complex cloud native platforms,” said Alexis Richardson, the CEO of Weaveworks. “With the acquisition of Magalix, Weaveworks introduces customizable policies, … continue reading
Databricks, the data and AI company, recently announced Databricks Partner Connect, a portal for users to quickly discover a broad set of validated data, analytics, and AI tools and easily integrate them with their Databricks lakehouse across multiple cloud providers. Integrations with Databricks partners Fivetran, Labelbox, Microsoft Power BI, Prophecy, Rivery, and Tableau are initially … continue reading
Cloud-native development has become the de facto way that companies make new apps due to its speed and cost savings. While it has opened up the world of Kubernetes, containers, and serverless to most organizations, they still need to grapple with certain complexities and security concerns that this style of development brings. Concerning the use … continue reading
We asked these tool providers to share more information on how their solutions help companies secure cloud-native applications. Their responses are below. Rani Osnat, VP strategy and product marketing at Aqua Security From day one, we started out focusing on containers, because that was the big technology that was pushed in the earlier days with … continue reading
Threatmapper is a cloud-native security observability platform that scans, maps, and ranks vulnerabilities from development through production across serverless, Kubernetes, container, and multi-cloud environments. This Wednesday, it was open-sourced by Deepfence under the Apache 2.0 license. “By open sourcing ThreatMapper, we aim to help developers, DevOps, DevSecOps, and security teams identify and prioritize threats quickly … continue reading
Google today announced Google Cloud Deploy, a managed, opinionated continuous delivery service that makes continuous delivery to GKE easier, faster, and more reliable. Deploying container image artifacts into various environments remains a difficult task to many, and there are still no agreed-upon best practices. “Google Cloud Deploy is the product of discussions with more than … continue reading
Snyk announced that it closed a $530 million Series F investment, which now totals the company’s funding to-date to $8.5 billion. “This new investment, together with the rapid adoption of our platform and growing customer base, validates our developer security vision,” said Peter McKay, CEO of Snyk. “When security starts with the world’s expanding pool … continue reading
It’s no surprise that organizations are trying to do more with less. In the case of managing infrastructure, they’re in fact trying to do much more in the area of provisioning software — not by lessening it but by eliminating infrastructure altogether, through the use of serverless technology. According to Jeffrey Hammond, the vice president … continue reading
Kubescape is a tool for testing if Kubernetes is deployed securely. It uses the Kubernetes Hardening Guidance released by the NSA and CISA to do this. Tests are configured in YAWL files, which makes it easy to update when specifications for tests change. It runs tests on the following things: non-root containers, immutable container filesystem, … continue reading
