6 comments

[ 3.5 ms ] story [ 24.7 ms ] thread
Ironically that website has no TLS. But the tools in the article are a good collection. Too bad CoreOS got eaten by RH/IBM because that level of integration will probably not be replicated in Fedora. And that in turn might cause Clair to get less development or integration, which is bad for everyone.
It's odd they don't list OPA Gatekeeper, which is probably the best tool for enforcing security and other best practices in Kubernetes clusters.

List of CNCF open source security projects without the blog post: https://landscape.cncf.io/category=security-compliance&forma...

I've had good success with Anchore in the past, and yeah, missing Gatekeeper is bizarre.