Open Policy Agent Gatekeeper

Renato Losio and a panel of security experts discuss designing for defense and architecting APIs with Zero Trust principles. They explain Zero Trust concepts, address challenges developers face in applying these, and highlight common API vulnerabilities.

CLI tool and library for generating a Software Bill of Materials from container images and filesystems - anchore/syft

A vulnerability scanner for container images and filesystems - anchore/grype

In platform engineering, you build it, you own it: software, risks, security, and compliance. Security and compliance departments are our friends!

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start - goodwithtech/dockle

Canonical unveils 12-Year Kubernetes LTS, enhancing enterprise software infrastructure security and simplifying operations

HCP Vault Radar is a new SaaS-based secrets discovery product that enables organizations to proactively remediate unmanaged or leaked secrets.

Member post originally published on Nirmata’s blog by Jim Bugwadia Do policies that mutate or generate resources violate GitOps principles? In this blog post, I will show you how policy-based resource…

Our open-source vulnerability impact scoring system is now available and enhances incident response capabilities. Here's how VISS is unique.

Transitioning from a "Compliancе-First" approach to a "Risk-First" mindset rеcognizеs that compliancе should not be viеwеd in isolation but as a componеnt of a broadеr risk managеmеnt strategy.

Cryptographic protocol helps secure the open source software ecosystem with zero-trust passwordless authentication.

BastionZero’s leading infrastructure access platform delivers fast zero trust access without creating a single point of compromise.