Latest posts tagged with #PolicyAsCode on Bluesky
#Cedar - an #opensource authorisation policy language and SDK - has officially joined #CNCF as a Sandbox project!
It aims to provide a vendor-neutral standard for defining and enforcing fine-grained permissions in modern applications.
Details here 👉 bit.ly/4bx7c23
#DevOps #PolicyAsCode #InfoQ
Some thoughts about security and automation. I'm probably going to turn this into a presentation for #NolaSec soon.
#PolicyAsCode #SecureByDesign #DevSecOps #Resilience #InformationSecurity #Cybersecurity
AI governance needs the same rigor as model development.
Policy-as-Code enforces rules inside data & annotation workflows, catch issues early, apply standards consistently, and make compliance part of daily work.
Read more: imerit.net/resources/bl...
#PolicyAsCode #AIGovernance #modeldevelopment
New post in our Trustworthy AI series: Kill switches and circuit breakers for agent workloads.
How to halt agents, block runaway loops, and enforce runtime safety.
Read: www.sakurasky.com/blog/missing...
#AIEngineering #AgentSecurity #CloudSecurity #PolicyAsCode #SakuraSky
Mondoo’s Policy-as-Code uses an intuitive YAML/MQL format with over 300 out-of-the-box policies and frameworks. Define, version, test, and deploy security and compliance controls across your infrastructure and CI/CD pipeline, consistently and efficiently.
#PolicyAsCode #InfrastructureAsCode
New blog in our Trustworthy AI series: Policy-as-Code for AI agents.
Real-time enforcement, OPA + Rego, and practical runtime governance.
Short Python example included.
www.sakurasky.com/blog/missing...
#AIEngineering #AIGovernance #PolicyAsCode #TrustworthyAI #DevSecOps
Zero CVEs ≠ Zero Risk.
Misconfigurations & leaked secrets can take down an image faster than any exploit.
Anchore helps teams catch both.
By @JoshSopuru → anchore.com/blog/beyond-the-cve-deep...
#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain
Policy failure—not zero-days—is the real weak link.
Anchore enforces what "secure" means before bad configs & secrets ever ship.
Read @JoshSopuru's Beyond t... anchore.com/blog/beyond-the-cve-deep...
#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain
Relying on CVE scans alone is like putting a padlock on a vault with the back door open.
Anchore goes beyond the CVE to secure configs, secrets &... @JoshSopuru anchore.com/blog/beyond-the-cve-deep...
#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain
Inside the Tab
Read more: buff.ly/zeoOJZz
@TechFieldDay.com #SquareX #XFD14 #Cybersecurity #EDR #ThreatPrevention #PolicyAsCode
How would your security strategy change if every browser tab could see and stop threats in real time, right where users interact with the web?
Learn more about SquareX and what they offer from Security Field Day.
#XFD14 #Cybersecurity #EDR #ThreatPrevention #PolicyAsCode
KyvernoCon is here! 🎉
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.
Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.
🛠️ Join us → www.cncf.io/blog/2025/09...
#Kyverno #CNCF #CloudNative
JSON-based policies + Git integration = Compliance workflows that actually work with DevOps 🔧
https://anchore.com/platform/enforce/
#PolicyAsCode #DevSecOps #Compliance
✍️ #PolicyAsCode #PaC is emerging as a key area of focus for #AppSec in the age of cloud-native software development, but putting it into practice remains a challenge.👇 www.reversinglabs.com/blog/policy-...
Kubernetes #PolicyasCode is essential for #cluster #governance. Automate security, compliance, and best practices w/ tools like Kyverno, OPA, + Polaris.
This post by @sudermanjr.bsky.social explores how to simplify policy management for your K8s infrastructure:
www.fairwinds.com/blog/kuberne...
🚨 Security doesn't start in prod — it starts at terraform plan.
With Policy as Code tools like #OPA, #Checkov, #Snyk, and #Sentinel by @hashicorp.com, you can catch misconfigs before they deploy. 🛡️
🎥 youtube.com/shorts/C-2OJ...
#Terraform #HashiCorp #DevSecOps #PolicyAsCode
10/🧵 What's your biggest tagging nightmare? Consistency? Enforcement? Getting teams onboard? Share below! 👇 Next week: Building killer dashboards to visualize all this glorious tagged data!
#CloudGovernance #PolicyAsCode #FinOpsJourney
CIS ✅ STIG ✅ FedRAMP ✅ NIST ✅
Anchore Enforce comes with pre-built policy packs for major compliance standards. No translat... anchore.com/blog/automate-your-compl...
#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode
Developers: Stop getting surprised by compliance issues at the end of your build. Anchore Enforce gives you immediate policy ... anchore.com/blog/automate-your-compl...
#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode
Software supply chain attacks ⬆️ 540% since 2019. Your solution? Automated policy enforcement.
See how Anchore Enforce help... anchore.com/blog/automate-your-compl...
#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode
Before Policy-as-Code: Arcane compliance docs, 11th-hour shipping delays 😩
After Policy-as-Code: Automated and immediate feedback without leaving your terminal ✨
See how: anchore.com/blog/sbom-and-policy-as-...
#DevSecOps #SBOM #PolicyAsCode #SoftwareSupplyChain
Every context switch costs you productivity.
Learn how SBOMs & Policy-as-Code eliminate friction between development velocity and compliance requirements.
Read our developer... anchore.com/blog/sbom-and-policy-as-...
#DevSecOps #SBOM #PolicyAsCode #SoftwareSupplyChain
🚀 The wait is over—Kubewarden 1.23 is here! Packed with security enhancements, smoother workflows, and key updates to elevate your Kubernetes experience. Dive into what's new: www.kubewarden.io/blog/2025/03... 🌟 #Kubernetes #DevSecOps #Security #PolicyAsCode
Tired of switching from coding to compliance?
Learn how SBOMs & Policy-as-Code automate policy checks in your workflow so you can spend less time in meetings and more time in your terminal.
Read... anchore.com/blog/sbom-and-policy-as-...
#DevSecOps #SBOM #PolicyAsCode
Can’t believe #KubeCon + #CloudNativeCon #Europe 2025 is just around the corner! Join @sudermanjr.bsky.social there, where he'll be speaking in a session about #Kubernetes #PolicyasCode (PaC). Check out this guide on what to expect & what he's excited to attend:
www.fairwinds.com/blog/cant-mi...
👉dans La tech est politique de la semaine, j'ai parlé #PCLOB et #DPF : ça bouillonne et faut se mettre en ordre de marche.
👉je parle #PolicyAsCode et de transformation culturelle avec DORA cet après-midi à nos amis British grâce à FinTech Futures.
7/9
Searching for ways to improve your cloud-native operations with cutting-edge strategies? 🙋♂️
Learn how #GitOps and #PolicyAsCode (#PaC) can revolutionize your organization by streamlining operations & ensuring security and compliance. 🔐
🔗 https://buff.ly/4h2qIU5
#DevOps #CloudNative #Kyverno
