Tetragon 1.0 delivers production-ready eBPF-based runtime security, real-time observability, and policy enforcement for Kubernetes clusters with minimal performance overhead.
Bottlerocket 1.14 delivers improved security features, enhanced container runtime support, better performance, and expanded integration capabilities for secure container OS.
Workload Identity Federation enables secretless, zero-trust authentication for Kubernetes workloads across multi-cloud environments using OIDC and ephemeral tokens.
Gatekeeper 3.14 delivers enhanced OPA integration, improved performance, better policy management, and expanded validation capabilities for Kubernetes governance.
Kyverno 1.11 delivers enhanced policy capabilities, improved performance, better validation rules, and expanded integration with Kubernetes admission control.
Kubewarden 1.7 delivers enhanced WebAssembly support, improved performance, better policy management, and expanded policy capabilities for Kubernetes governance.
Bottlerocket 1.13 delivers secure OS enhancements, Kubernetes integration improvements, and update mechanisms for secure container operating system.
Kubescape provides comprehensive Kubernetes security scanning based on multiple frameworks including CIS Benchmark, NSA/CISA guidelines, and MITRE ATT&CK.
Image Swapper 1.0 provides automated container image mirroring, security scanning integration, and registry management for Kubernetes workloads.
Best practices for securing Kubernetes clusters during bootstrapping, including CIS Kubernetes Benchmark integration, kubeadm security configurations, and compliance-ready cluster initialization.