Andrew Martin ⚡☸️

So much happening around Flux @ KubeCon next week :)
Here's what's up!
fluxcd.io/kubecon

#KubeCon #FluxCD

Announcing Flux 2.7 GA We are thrilled to announce the release of Flux v2.7.0! Here you will find highlights of new features and improvements in this release.

Flux v2.7 is out 🚀 Big thanks to all contributors ❤️

Image automation goes GA, new ArtifactGenerator API for advanced sources composition and decomposition patterns, hub-and-spoke OIDC auth, and so much more.

fluxcd.io/blog/2025/09...

#FluxCD #GitOps #Kubernetes

Compromises Catalog of Supply Chain Compromises This repository contains links to articles of software supply chain compromises. The goal is not to catalog every known supply chain attack, but rather to capture m...

We have a historical "Catalog of Supply Chain Compromises" in TAG Security if that helps (suggested updates welcome, 9mo OOD) tag-security.cncf.io/community/ca...

📅 Starting next week:

Continuous Delivery with FluxCD & Understanding Kubernetes for Beginners https://ku.bz/drM2Qkb4y

Root cause analysis in Kubernetes, Kubernetes data protection https://ku.bz/F-b8nPHK_

Devopsdays Eindhoven https://ku.bz/-N82cyzWX

🧰Workshop: Building Assured Software Supply Chains by Andrew Martin
Learn to spot risks across the SDLC and defend against threats like dependency poisoning & build compromise. Hands-on threat modeling with real-world cases + a reusable framework.

https://bsorl.org/workshops

Nominate yourself or a colleague in the OpenUK Awards 2025 Open Source Security category sponsored by @controlplane.io 💫 openuk.uk/awards Shortlist September #security #cybersecurity#openukawards #opensource 🏆🌟

Blog: Post-Quantum Cryptography in Kubernetes-

At the OpenSSF Community Day event, six individuals participate in a panel discussion titled “OpenSSF TableTop Exercise (TTX): Continuously Integrating… Disaster!” The presentation slide is displayed behind them on a large screen with the OpenSSF logo. The event date is Thursday, June 18, 2025. One person stands at a lectern labeled “OpenSSF Community Day,” wearing a colorful hockey-style jersey and speaking into a microphone. Five panelists are seated on stools.

OpenSSF TTX Panel Session - John Kjell, ControlPlane; Seth Larson, Python Software Foundation; Mihai Maruseac, Google; Yesenia Yser, Microsoft; Megan Knight, Arm & Moderated by Christopher "CRob" Robinson, OpenSSF #OpenSSFCommunityDay

I can certainly relate to absent-minded bike misplacement 🙃

Mark your calendar: fwd:cloudsec Europe 2025 lights up Berlin on September 15-16!

This two-day event is a non-profit cloud security conference, and we expect over 350 attendees this year!

TAG Security @ KubeCon EU 2025 - YouTube

Here's a playlist with the 7 KubeCon talks from TAG Security leads!

Seven!! 🤯

@mikeneeds.rest @sublimi.no

www.youtube.com/playlist?lis...

Black Mirror returns April 10th, which is really bloody soon

New BLACK MIRROR very imminent indeed. As in tomorrow (Thursday).

KCD rocked in Rio! Thank you for having me in your beautiful country, here's my best effort at Kubernetes Security in 20m 🤖⭐🛡️🔒🇧🇷 drive.google.com/file/d/1dhhV...

#kubernetes #community #k8s #security #cloudnative #brazil #latam

Hahah I was just talking about flaming São Paulo sushi — you are missed here @rkatz.xyz!

FINOS community call is live!
Join to learn about open source initiatives for financial services organizations coordinated by the Linux Foundation, including a presentation from @sublimi.no about the AI Gorvernance framework we have been working on.
👉https://www.youtube.com/watch?v=MOZxQhd3rIQ

This was a lot of fun! Slides for "K8s vs Agent Smith: Exploding GPUs and AI Security" drive.google.com/file/d/1afeh...

Thanks to @ipedrazas.bsky.social @rawkode.dev and K8s London crew ❤️ bsky.app/profile/iped...

Haha human-facing link: drive.google.com/file/d/1afeh...

What day is today? It’s Kubernetes London Meetup day!!

Today @sublimi.no speaks about threat modelling and attacking AI agents

What are the biggest security challenges on Kubernetes, and what does AI add to the mix?

I got a chance to catch up with @sublimi.no at the State of Open Con last week and this is what he shared with me.

Did he miss anything?

AI Safety Group Inaugural Talks, Thu, Feb 27, 2025, 7:00 PM | Meetup **Update! Talks for the sessions are now published here.** Welcome to the inaugural session for the AI Safety London group! Agenda: \- 7:00 PM: Greeting and brief introdu

Join us on February 27:
"AI Safety London" with our first talks!

👉"AI Alignment: Practical Evaluations and Strategies", by @kabirkumar.bsky.social from ai-plans.com

👉"Cybersecurity as the Catalyst for Real-World AI Safety", by @sublimi.no, CEO at control-plane.io

AI Safety and Security at Scale!

GitHub - antitree/seccomp-diff Contribute to antitree/seccomp-diff development by creating an account on GitHub.

I just finished our #shmoocon talk on container security. Here's my seccomp bpf disassembler and diffing tool.

github.com/antitree/sec...

Stoked to be airdropping into DC for a couple of days and (the final?) #schmoocon ⚡

May Cthulhu bring you everything you desire 🐙🐲

GitOps with Flux Timoni is a package manager for Kubernetes powered by CUE lang.

> For Timoni to fully embrace GitOps, a Kubernetes controller will be implemented when Timoni's CUE APIs reach a more stable form.

Yarp, on the roadmap timoni.sh/gitops-flux/

Timoni Timoni is a package manager for Kubernetes powered by CUE lang.

Higher-order CUE for K8s timoni.sh /ht @stefanprodan.com

Social Media promo with my picture and a picture of St. Pauls's in the background with the following text: Dawn Foster. Director of Data Science, CHAOSS Project. Future of Open Source Track, Co-host OpenUK PRESENTS STATE of OPEN Con 4-5 February, 2025 Sancroft, St. Pauls, London | stateofopencon.com #stateofopencon

I'm co-hosting the Future of Open Source Track at State of Open Con, and we have some amazing sessions lined up, so I hope you can join us on Feb 4-5! You can combine it with FOSDEM and take the Eurostar from Brussels - it's a lovely way to travel! stateofopencon.com #soocon25 #stateofopencon.

Hell yes, paying for Kagi since I saw it on hn. Love the search filters

🔊 Notice about LTS branches and pull rates in Docker Hub · Issue #75671 · bitnami/containers Starting December 10th, 2024, only the latest stable branch of applications deployed by Bitnami Helm charts will receive updates in the free Bitnami catalog. Previous versions already released will...

A Christmas present from Broadcom! Get ready for rate limits if you are freeloading the Bitnami Helm charts and containers from DockerHub 😆 github.com/bitnami/cont...

Andrew Martin, CEO ControlPlane, CISO OpenUK, track co-chair

@openuk.bsky.social's State of Open Con CFP is closing Sunday 8th! Spicy security and software topics welcome 🌶️🔥

🔗 sessionize.com/state-of-ope...
🎓 Open Source Software and Security
⚡ #soocon25 #stateofopencon

Smooth moves @gitlab.com 🙌