Topics

Info: Kubernetes Security Audit results

Samuli Kuusela
 

Hi SECCOM,
for information:

Kubernetes Security Working Group (SWG) ordered a security audit of the core K8s project from Trail of Bits. The results are available in https://github.com/kubernetes/community/blob/master/wg-security-audit/findings/Kubernetes%20Final%20Report.pdf

 

Here https://www.cncf.io/blog/2019/08/06/open-sourcing-the-kubernetes-security-audit/ is also info about CNCF “performing and open sourcing third-party security audits for its projects in order to improve the overall security of our ecosystem”. So this is / will not be only for Kubernetes project in CNCF.

 

Brs,

Samuli