This article presents three Vault integration mechanisms in Kubernetes: Banzai Cloud's Vault Secrets Webhook, CSI Provider, and Agent Sidecar Injector It evaluates each based on key features, advantages, and limitations. More: https://lnkd.in/dk9m3B73
About us
News and links on Kubernetes security curated by the Learnk8s team
- Website
-
https://kubesploit.io
External link for Kubesploit
- Industry
- Internet News
- Company size
- 2-10 employees
- Headquarters
- London
- Specialties
- Kubernetes and Security
Updates
-
Harsha, a Security Researcher and Technical Product Manager at Palo Alto Networks, explores the practical and security benefits of Distroless containers. He debunks the myth surrounding their security and explains the fundamental differences between Distroless containers and traditional distributions, highlighting the absence of package managers, shells, and OS-level utilities in Distroless containers. Watch the full episode: https://ku.bz/n_sJ04xMY
-
Yakir and Assaf from Aqua Security explore the critical issue of exposed Kubernetes secrets and the potential supply chain attack threats they pose. They explain that Kubernetes is not an isolated system and often requires secrets or tokens to access container registries, integrate with organizational Single Sign-On (SSO), or manage network TLS certificates. Watch the full episode: https://ku.bz/5RKVBGlQR
-
This article discusses a security vulnerability in Kubernetes' deprecated gitRepo volume driver, which allows an attacker to execute arbitrary commands on a worker node as root, and provides information on how to prevent it. More: https://lnkd.in/guqZ63y8
-
-
This week's 6 best Kubernetes vacancies that focus on security are: DevSecOps Engineer with xAI 💰 $180K to $440K a year 🏠 From the office in San Francisco / Palo Alto, CA, USA → https://lnkd.in/g4mJnnMC DevSecOps Engineer with Gemini 💰 $248K to $310K a year 👨💻 Remote from the United States → https://lnkd.in/gur_MM8i DevSecOps Engineer with Uniswap Labs 💰 $264K to $294K a year 🏠 From the office in New York, NY, USA → https://lnkd.in/gFb3GpPe Security Architect with Adobe Inc. 💰 $191.7K to $345.7K a year 🏠 From the office in Seattle, WA / San Francisco / San Jose, CA, USA → https://lnkd.in/gqt3ddip DevSecOps Engineer with CoreWeave 💰 $240K to $275K a year 🏠🏃🏻♂️🌎 Roseland, NJ / Brooklyn, NY / Sunnyvale, CA / Bellevue, WA, USA → https://lnkd.in/gbSjY_jy DevSecOps Engineer with CVS Pharmacy, Inc. 💰 $175.1K to $334.75K a year 🏠🏃🏻♂️🌎 New York, NY, USA → https://lnkd.in/gvGQcBgn 👉 Browse all 1359 Kubernetes jobs on Kube Careers https://kube.careers
-
-
Learn how to use Open Policy Agent (OPA) to write policies for Kubernetes clusters, including defining namespace policies, allocating resource quotas, and creating a custom validation webhook. More: https://lnkd.in/gFNJyU-J
-
-
Kubesploit reposted this
This week on Learn Kubernetes Weekly 107: 💰 How I came to build a cheap server cluster for VDI Michael Lipp 🐝 eBPF maps state synchronization across multi-node Kubernetes cluster Teodor Podobnik 🕸️ Service Meshes decoded: is Istio Ambient worth it? Oleksandr Polishchuk 🗑️ How to uninstall Multus CNI without borking your Kubernetes cluster Ahmed Ibrahim 📝 Kubernetes configuration in 2024 Brian Grant And more! If you prefer to receive the newsletter every week in your inbox, you can subscribe here: https://lnkd.in/gAsGumWd ⭐️ This newsletter is brought to you by Robusta Dev — reduce Prometheus and Kubernetes troubleshooting time by 80% with an AI Assistant. Fewer alerts and better developer experience https://ku.bz/NdP67ry-g #kubernetes #newsletter #learnk8s
-
Tim CEO and Co-founder at Kusari explains why minimal containers are just one piece of the supply chain security puzzle. He discusses how container minimization must be complemented with supply chain tracking and provenance information. Tim highlights how the Software Development Life Cycle (SDLC) often removes complexity but also eliminates crucial tracking information needed for security incident response. Watch the full interview: https://ku.bz/-2Sqn9Jb9 This interview is a reaction to Harsha's episode https://ku.bz/n_sJ04xMY
-
Kubernetes Network Policies control pod communication. This guide introduces Network Policies, including implementing and troubleshooting policies to enhance the security of your Kubernetes applications. More: https://lnkd.in/gS6xpaWj
-
-
Confidential Containers is an open source community that works to enable cloud native confidential computing by leveraging Trusted Execution Environments to protect containers and data. More: https://lnkd.in/g8gwQSci