Skip to main content

KubeCon 2022: GitLab announces new Security and Governance updates, Slim.AI launches Container Intelligence, Sigstore announces free software signing service, and more

More exciting new releases and product updates were revealed today as KubeCon 2022 continues. 

GitLab announces new Security and Governance updates

GitLab today announced new enhancements to its Security and Governance solution which aims to help organizations integrate security and compliance in every step of the software development lifecycle as well as secure their software supply chain.

According to the company, these enhancements are intended to provide visibility and management over security findings and compliance requirements, as well as deliver an improved software supply chain security experience.

Among these enhancements are the ability to ingest software bill of materials reports and build artifact signing. Additionally, users will be better equipped to proactively identify vulnerabilities and fulfill compliance and regulatory standards. 

Slim.AI launches Container Intelligence

The cloud-native optimization and security company Slim.AI launched Container Intelligence to allow users to gain insights into what’s in the most popular container images that they’re baking into their software every day.

Container Intelligence works to scan over 160 popular public container images making up 30% of total global pull volume utilizing a combination of both open-source and proprietary scanning tools.

With this release, users gain access to publicly available container profile pages on the Slim.AI website; vulnerability counts by severity, container construction details, and package information; fully searchable and categorized containers; and the most updated data. 

Sigstore announces free software signing service

Sigstore today announced the general availability of its free software signing service. This release is intended to offer open source communities access to production-grade stable services for artifact signing and verification.

According to sigstore, the company’s goal is to provide a set of tools designed to improve supply chain security by simplifying the process of signing, verifying, and checking the software developers are building and consuming.

Sigstore stated that it will operate the service with a 99.5% uptime SLO and round-the-clock pager support. Project sponsors Google, Red Hat, GitHub, and Chainguard have helped make this possible by providing the resources that are essential to service level objectives. 

JFrog’s Pyrsia initiative incubating under CD Foundation

The liquid software company JFrog has announced that Pyrsia, an open-source software community initiative that utilizes blockchain technology in order to secure software packages, is now an incubating project under the Continuous Delivery Foundation.

“We’re excited to join our long-time partners at the CD Foundation in creating a groundswell around Pyrsia to further its mission to better secure the software supply chain,” said Stephen Chin, VP of developer relations at JFrog and governing board member for the CD Foundation. “With the CD Foundation’s support, and that of our incredible industry partners, developers can leverage Pyrsia to have peace-of-mind in knowing their open source components have not been compromised, and confidently deliver secure software at scale.”

With this incubation, JFrog and the CD Foundation intend to grow Pyrsia’s backing and engagement through a centralized governance model as well as a defined roadmap, and representation within the wider technology and open-source communities.

The post KubeCon 2022: GitLab announces new Security and Governance updates, Slim.AI launches Container Intelligence, Sigstore announces free software signing service, and more appeared first on SD Times.



from SD Times https://ift.tt/vImhCQd

Comments

Popular posts from this blog

Difference between Web Designer and Web Developer Neeraj Mishra The Crazy Programmer

Have you ever wondered about the distinctions between web developers’ and web designers’ duties and obligations? You’re not alone! Many people have trouble distinguishing between these two. Although they collaborate to publish new websites on the internet, web developers and web designers play very different roles. To put these job possibilities into perspective, consider the construction of a house. To create a vision for the house, including the visual components, the space planning and layout, the materials, and the overall appearance and sense of the space, you need an architect. That said, to translate an idea into a building, you need construction professionals to take those architectural drawings and put them into practice. Image Source In a similar vein, web development and design work together to create websites. Let’s examine the major responsibilities and distinctions between web developers and web designers. Let’s get going, shall we? What Does a Web Designer Do?

A guide to data integration tools

CData Software is a leader in data access and connectivity solutions. It specializes in the development of data drivers and data access technologies for real-time access to online or on-premise applications, databases and web APIs. The company is focused on bringing data connectivity capabilities natively into tools organizations already use. It also features ETL/ELT solutions, enterprise connectors, and data visualization. Matillion ’s data transformation software empowers customers to extract data from a wide number of sources, load it into their chosen cloud data warehouse (CDW) and transform that data from its siloed source state, into analytics-ready insights – prepared for advanced analytics, machine learning, and artificial intelligence use cases. Only Matillion is purpose-built for Snowflake, Amazon Redshift, Google BigQuery, and Microsoft Azure, enabling businesses to achieve new levels of simplicity, speed, scale, and savings. Trusted by companies of all sizes to meet

2022: The year of hybrid work

Remote work was once considered a luxury to many, but in 2020, it became a necessity for a large portion of the workforce, as the scary and unknown COVID-19 virus sickened and even took the lives of so many people around the world.  Some workers were able to thrive in a remote setting, while others felt isolated and struggled to keep up a balance between their work and home lives. Last year saw the availability of life-saving vaccines, so companies were able to start having the conversation about what to do next. Should they keep everyone remote? Should they go back to working in the office full time? Or should they do something in between? Enter hybrid work, which offers a mix of the two. A Fall 2021 study conducted by Google revealed that over 75% of survey respondents expect hybrid work to become a standard practice within their organization within the next three years.  Thus, two years after the world abruptly shifted to widespread adoption of remote work, we are declaring 20