CVE-2022-47633: Kyverno’s container image signature verification can be bypassed by a malicious registry or proxy
Security researchers at ARMO have found a high-severity vulnerability in the Kyverno admission controller container...
The Kube-Blog By ARMO
Most viewed articles
Comparing the Leading Tools That Scan Against the CIS Kubernetes Benchmark Framework
CIS Benchmarks are a focused set of guidelines for the secure configuration, vulnerability detection, and...
[NEW] Kubescape now integrates with GitHub Actions
[NEW] Kubescape now integrates with GitHub Actions. This allows users to identify issues as early...
Remote Code Execution (RCE) in Kubernetes
A detailed overview of the Remote Code Execution (RCE) attacks, how it affects the Kubernetes...
Kubernetes Version 1.26: Everything You Should Know
Kubernetes Version 1.26: read everything you should know about it right here!
2022 Kubernetes Vulnerabilities – Main Takeaways
All the main K8s vulnerabilities from 2022 consolidated into one article. Read all about it...
The State of Kubernetes {Open-Source} Security
A first of its kind survey looks at the relationship between open-source and K8s security....
How to Deploy the Kubernetes Dashboard
Kubernetes clusters consist of multiple resources and API objects interacting dynamically. This typically makes cluster...
CVE-2022-39328: Unauthorized access to arbitrary endpoints in Grafana codebase
Grafana Labs published a security advisory for a new critical vulnerability in its open-source product....
Introducing:
Kubescape Open-API Framework (Swagger)
Open source got more open source-y. Kubescape API is now documented on Swagger, the OpenAPI...
Upcoming Critical OpenSSL Vulnerability
This blog covers a developing story and it will be updated as new information and...
Kubescape adds CIS benchmark, boosting security and compliance scanning
Kubescape can now automatically scan Kubernetes clusters against the Center for Internet Security (CIS) benchmark,...