The State of Kubernetes Policy and Governance

March, 2024

Hello from all of us at Nirmata!

Here’s our March newsletter with the latest insights, news, and updates on Kubernetes, cloud-native security, compliance, governance, policy as code, pipelines, and supply chain security from across the industry. Please feel free to reach out to us to share your questions or comments.

We have also given our website a fresh new look and added some exciting features to enhance your experience. Head over to our new website to explore the changes and see what's been improved.

Locked Doors, Untrusted Keys: Securing Containers in the Wake of Leaky Vessel Vulnerabilities

There has been a recent buzz surrounding the actively exploited runc vulnerabilities “Leaky Vessels.” Boris Kurktchiev explains how you can use #Kyverno policy to give you a better view of how impactful this new vulnerability is going to be, and block persons from blatantly trying to exploit Leaky Vessels. Read more.

Recent Blogs

• The Need for Speed: Optimizing Kyverno’s Performance

• Securing OpenTofu with Nirmata Powered by Kyverno

• Proactive vs Reactive Security: A Paradigm Shift in Application Security

Download Free eBook

Unveiling our latest policy-as-code eBook on Kubernetes. Dive deep into the nuances of Kubernetes policy governance, and discover best practices for managing policies effectively. Download here. 

Recent Events

• An interesting discussion with Anusha Hegde and Anushka Mittal on the role of tools like Kyverno and Kyverno JSON in enforcing policies to detect and enable remediation of security issues before they reach production.
• Cloud Native Live: Kyveno 1.12 and beyond!
  The Kyverno project provides tools for cloud native policy and governance. In this session, Kyverno maintainers Shuting Zhao and Mariam Fahmy from Nirmata discussed new features in the 1.12 release, as well as the roadmap for upcoming releases. More details here. 

Recent Videos

• Future of Cloud Security and Go-to-Market Strategies!
• Embracing Security in Kubernetes Clusters Using Kyverno

From the Kyverno Community

Kyverno Blogs

• Runtime Kubernetes policies in production with Kyverno

• Kyverno and Kubecost: Real-time Kubernetes Cost Management

• Policy-as-Code in the software supply chain

• Securing services meshes easier with Kyverno

Community Engagement

• 4.9K stars for Kyverno
• 2.8 billion image pulls for Kyverno
• Growth in Kyverno adoption
• Latest Kyverno adopters
• New version of Kyverno Chainsaw
• Kyverno debuts at #32 in the Top 100 Security List
• Kyverno on LFX Insights

We love hearing from you!

Are you already using Kyverno or planning to use Kyverno for security, governance and compliance of your Kubernetes environments? Are you looking to solve complex problems such as multi-tenancy, software supply chain security or developer self-service?  Contact us to learn how we can help.