Security News > 2021 > May > Red Hat open-sources StackRox Kubernetes security product
As Kubecon Europe gets under way, Red Hat has pushed out StackRox, the Kubernetes security product it acquired earlier this year, as an open-source project which will be the upstream for its Advanced Cluster Security for OpenShift.
The StackRox product is itself deployed as a Kubernetes application and has several components, aiming to pick up vulnerabilities in both container images and in Kubernetes, look for misconfigurations such as unnecessarily elevated privileges, perform rule-based threat detection, and more.
StackRox technology is the basis of Red Hat Advanced Cluster Security, recently introduced as part of the company's focus on OpenShift, its Kubernetes distribution.
Now Red Hat is hoping to engage the open-source community in order to improve both StackRox and Red Hat Advanced Cluster Security.
"In an ideal scenario, this would be a redeployment of the application," said Red Hat, but Crane aims to migrate both data and Kubernetes objects as a quick solution.
Refactoring applications for Kubernetes is perhaps one of the key challenges facing developers, though the extent to which a tool can assist with it remains an open question.
News URL
https://go.theregister.com/feed/www.theregister.com/2021/05/04/red_hat_stackrox_kubernetes/
Related news
- Orbit: Open-source Nuclei security scanning and automation platform (source)
- Misconfig Mapper: Open-source tool to uncover security misconfigurations (source)
- OSPS Baseline: Practical security best practices for open source software projects (source)
- Hetty: Open-source HTTP toolkit for security research (source)
- NetBird: Open-source network security (source)
- IntelMQ: Open-source tool for collecting and processing security feeds (source)