Search

cncf.io › blog › 2026 › …

Securing CI/CD for an open source project: Controlling who runs what

…CNCF projects highlighted in this post Part one The last twelve months have been rough on the open source supply chain. Axios was compromised on npm and shipped a remote access trojan…

Jun 4, 2026

cncf.io › blog › 2026 › …

Announcing Kyverno release 1.18!

Posted on May 5, 2026 by Cortney Nickerson, Kyverno Contributor CNCF projects highlighted in this post We’re excited to announce the release of Kyverno 1.18, our first release since graduating…

May 5, 2026

cncf.io › blog › 2026 › …

Zero-Downtime migration from ingress NGINX to Envoy Gateway

Posted on May 25, 2026 by Andrew Katsikas, Pelotech CNCF projects highlighted in this post Teams running Ingress NGINX in production are increasingly evaluating migration paths as Kubernetes networking evolves toward Gateway…

May 25, 2026

cncf.io › blog › 2026 › …

Rethinking platform engineering through diverse perspectives at KubeCon + CloudNativeCon EU Amsterdam

…the sustainability of projects and platforms. Connecting technical and human perspectives Together, these sessions illustrate that platform engineering is intrinsically socio-technical . While internal developer platforms and automation pipelines remain central, the…

Apr 10, 2026

cncf.io › blog › 2026 › …

The AI-driven shift in vulnerability discovery: What maintainers and bug finders need to know

…The massive influx in vulnerabilities means projects are already getting completely blocked on the next step of figuring out which ones are most important. Inside of projects like Kubernetes, which has more…

Apr 16, 2026

cncf.io › blog › 2026 › …

Building a cloud native internal developer platform with Kubernetes, GitOps, and supply chain security

…Argo CD Application CRD — Automated GitOps Sync apiVersion: argoproj.io/v1alpha1 kind: Application metadata: name: microservice-api namespace: argocd labels: app.kubernetes.io/part-of: internal-developer-platform spec: project: default source…

May 29, 2026

cncf.io › blog › 2026 › …

The symbiotic revolution: AI and cloud native technologies transforming the digital landscape

Posted on January 13, 2026 by Gerald Venzl, VP of Dev & AI Initiatives at Oracle CNCF projects highlighted in this post This Ambassador Blog was originally published on the writer’s blog…

Jan 13, 2026

cncf.io › blog › 2026 › …

Inspektor Gadget: Results from the first security audit

…Automate third-party vulnerability scanning for project dependencies. Reduce RBAC permissions on the DaemonSet pod — specifically the nodes/proxy GET permission, which could be leveraged for privilege escalation if the service account…

Jun 3, 2026

cncf.io › blog › 2026 › …

Three TAG leads walk into the TOC

…about. We’re driving five initiatives right now. Project Release Guidelines because release processes shouldn’t be tribal knowledge. Levels of Service Reliability Automation, a white paper I’m genuinely excited about…

May 26, 2026

cncf.io › blog › 2026 › …

Benchmarking KubeVirt performance with virtbench

Posted on June 8, 2026 by Bob Glithero, Senior Technical Product Marketing Manager, Portworx by Everpure CNCF projects highlighted in this post Organizations migrating VM estates from traditional hypervisors to KubeVirt often…

Jun 8, 2026