# DevSecOps and Security. Container
!!! info "Architectural Context"
Detailed reference for DevSecOps and Security. Container in the context of Hardened Infrastructure.
## Table of Contents
1. [Platform](#platform)
- [Reference](#reference)
## Platform
### Reference
- **(2026)** [==thenewstack.io: Infrastructure-as-Code: 6 Best Practices for Securing Applications π==](https://thenewstack.io/infrastructure-as-code-6-best-practices-for-securing-applications) πππππ [DE FACTO STANDARD] β A curated reference on thenewstack.io: Infrastructure-as-Code: 6 Best Practices for Securing Applications π for modern cloud native architectures.
- **(2026)** [==thenewstack.io: Kubernetes Secrets Management: 3 Approaches, 9 Best Practices==](https://thenewstack.io/kubernetes-secrets-management-3-approaches-9-best-practices) πππππ [DE FACTO STANDARD] β A curated reference on thenewstack.io: Kubernetes Secrets Management: 3 Approaches, 9 Best Practices for modern cloud native architectures.
- **(2026)** [==10 Serverless security best practices==](https://snyk.io/blog/10-serverless-security-best-practices) πππππ [DE FACTO STANDARD] β A curated reference on 10 Serverless security best practices for modern cloud native architectures.
- **(2026)** [**kalilinuxtutorials.com: Deploying & Securing Kubernetes Clusters**](https://kalilinuxtutorials.com/deploying-securing-kubernetes-clusters) ππππ [ENTERPRISE-STABLE] β A curated reference on kalilinuxtutorials.com: Deploying & Securing Kubernetes Clusters for modern cloud native architectures.
- **(2026)** [**containerjournal.com: Siloscape: The Dark Side of Kubernetes**](https://cloudnativenow.com/features/siloscape-the-dark-side-of-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on containerjournal.com: Siloscape: The Dark Side of Kubernetes for modern cloud native architectures.
- **(2026)** [**bridgecrew.io: 6 key Kubernetes DevSecOps principles: People, processes, technology**](https://bridgecrew.io/blog/kubernetes-devsecops-principles) ππππ [ENTERPRISE-STABLE] β A curated reference on bridgecrew.io: 6 key Kubernetes DevSecOps principles: People, processes, technology for modern cloud native architectures.
- **(2026)** [**kubernetes.io: Overview of Cloud Native Security ππ**](https://kubernetes.io/docs/concepts/security) ππππ [ENTERPRISE-STABLE] β A curated reference on kubernetes.io: Overview of Cloud Native Security ππ for modern cloud native architectures.
- **(2026)** [**medium.com/@jonathan_37674: What have we learned from scanning over 10K Kubernetes Clusters? π**](https://medium.com/@jonathan_37674/what-have-we-learned-from-scanning-over-10k-kubernetes-clusters-b0ac6b250427) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@jonathan_37674: What have we learned from scanning over 10K Kubernetes Clusters? π for modern cloud native architectures.
- **(2026)** [**bleepingcomputer.com: Over 900,000 Kubernetes instances found exposed online**](https://www.bleepingcomputer.com/news/security/over-900-000-kubernetes-instances-found-exposed-online) ππππ [ENTERPRISE-STABLE] β A curated reference on bleepingcomputer.com: Over 900,000 Kubernetes instances found exposed online for modern cloud native architectures.
- **(2026)** [**containerjournal.com: Kubernetes Security in Your CI/CD Pipeline**](https://cloudnativenow.com/features/kubernetes-security-in-your-ci-cd-pipeline) ππππ [ENTERPRISE-STABLE] β A curated reference on containerjournal.com: Kubernetes Security in Your CI/CD Pipeline for modern cloud native architectures.
- **(2026)** [**medium.com/google-cloud: Shifting (even further) Left on Kubernetes Resource Compliance**](https://medium.com/google-cloud/shifting-even-further-left-on-kubernetes-resource-compliance-8f96fb8c72eb) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/google-cloud: Shifting (even further) Left on Kubernetes Resource Compliance for modern cloud native architectures.
- **(2026)** [**blog.devops.dev: End-to-End DevSecOps Kubernetes Project**](https://blog.devops.dev/end-to-end-devsecops-kubernetes-project-4259f90722ef) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.devops.dev: End-to-End DevSecOps Kubernetes Project for modern cloud native architectures.
- **(2026)** [**blog.stackademic.com: Advanced End-to-End DevSecOps Kubernetes Three-Tier Project using AWS EKS, ArgoCD, Prometheus, Grafana, and Jenkins**](https://blog.stackademic.com/advanced-end-to-end-devsecops-kubernetes-three-tier-project-using-aws-eks-argocd-prometheus-fbbfdb956d1a) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.stackademic.com: Advanced End-to-End DevSecOps Kubernetes Three-Tier Project using AWS EKS, ArgoCD, Prometheus, Grafana, and Jenkins for modern cloud native architectures.
- **(2026)** [**armosec.io: A Practical Guide to the Different Compliance Kubernetes Security Frameworks and How They Fit Together ππ**](https://www.armosec.io/blog/kubernetes-security-frameworks-and-guidance) ππππ [ENTERPRISE-STABLE] β A curated reference on armosec.io: A Practical Guide to the Different Compliance Kubernetes Security Frameworks and How They Fit Together ππ for modern cloud native architectures.
- **(2026)** [**thenewstack.io: Secured Access to Kubernetes from Anywhere with Zero Trust | Tenry Fu π**](https://thenewstack.io/secured-access-to-kubernetes-from-anywhere-with-zero-trust) ππππ [ENTERPRISE-STABLE] β A curated reference on thenewstack.io: Secured Access to Kubernetes from Anywhere with Zero Trust | Tenry Fu π for modern cloud native architectures.
- **(2026)** [**securityboulevard.com: Implementing Zero-Trust Security With Service Mesh and Kubernetes**](https://securityboulevard.com/2022/10/implementing-zero-trust-security-with-service-mesh-and-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on securityboulevard.com: Implementing Zero-Trust Security With Service Mesh and Kubernetes for modern cloud native architectures.
- **(2026)** [**cncf.io: Seven zero trust rules for Kubernetes**](https://www.cncf.io/blog/2022/11/04/seven-zero-trust-rules-for-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on cncf.io: Seven zero trust rules for Kubernetes for modern cloud native architectures.
- **(2026)** [**medium.com/getindata-blog: OAuth2-based authentication on Istio-powered Kubernetes clusters π**](https://medium.com/getindata-blog/oauth2-based-authentication-on-istio-powered-kubernetes-clusters-2bd0999b7332) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/getindata-blog: OAuth2-based authentication on Istio-powered Kubernetes clusters π for modern cloud native architectures.
- **(2026)** [**cncf.io: Identifying Kubernetes Config Security Threats: Pods Running as Root**](https://www.cncf.io/blog/2020/06/16/identifying-kubernetes-config-security-threats-pods-running-as-root) ππππ [ENTERPRISE-STABLE] β A curated reference on cncf.io: Identifying Kubernetes Config Security Threats: Pods Running as Root for modern cloud native architectures.
- **(2026)** [**thenewstack.io: How Kubernetes vulnerabilities have shifted since the first attacks**](https://thenewstack.io/how-kubernetes-vulnerabilities-have-shifted-since-the-first-api-attacks) ππππ [ENTERPRISE-STABLE] β A curated reference on thenewstack.io: How Kubernetes vulnerabilities have shifted since the first attacks for modern cloud native architectures.
- **(2026)** [**armosec.io: How to secure Kubernetes Ingress?**](https://www.armosec.io/blog/kubernetes-ingress-security) ππππ [ENTERPRISE-STABLE] β A curated reference on armosec.io: How to secure Kubernetes Ingress? for modern cloud native architectures.
- **(2026)** [**thenewstack.io: StackRox KubeLinter Brings Security Linting to Kubernetes**](https://thenewstack.io/stackrox-kubelinter-brings-security-linting-to-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on thenewstack.io: StackRox KubeLinter Brings Security Linting to Kubernetes for modern cloud native architectures.
- **(2026)** [**thenewstack.io: Project Calico: Kubernetes Security as SaaS**](https://thenewstack.io/project-calico-kubernetes-security-as-saas) ππππ [ENTERPRISE-STABLE] β A curated reference on thenewstack.io: Project Calico: Kubernetes Security as SaaS for modern cloud native architectures.
- **(2026)** [**betterprogramming.pub: Kubernetes Security With Falco**](https://betterprogramming.pub/kubernetes-security-with-falco-2eb060d3ae7d) ππππ [ENTERPRISE-STABLE] β A curated reference on betterprogramming.pub: Kubernetes Security With Falco for modern cloud native architectures.
- **(2026)** [**github.com/OWASP: OWASP Kubernetes Top 10 π**](https://github.com/OWASP/www-project-kubernetes-top-ten) β 615 ππππ [ENTERPRISE-STABLE] β A curated reference on ==github.com/OWASP: OWASP Kubernetes Top 10== π for modern cloud native architectures.
- **(2026)** [**Securing Kubernetes With Anchore**](https://anchore.com/kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on Securing Kubernetes With Anchore for modern cloud native architectures.
- **(2026)** [**medium: Verify Container Image Signatures in Kubernetes using Notary or Cosign or both**](https://medium.com/sse-blog/verify-container-image-signatures-in-kubernetes-using-notary-or-cosign-or-both-c25d9e79ec45) ππππ [ENTERPRISE-STABLE] β A curated reference on medium: Verify Container Image Signatures in Kubernetes using Notary or Cosign or both for modern cloud native architectures.
- **(2026)** [**itnext.io: Securing Kubernetes Workloads: A Practical Approach to Signed and Encrypted Container Images**](https://itnext.io/securing-kubernetes-workloads-a-practical-approach-to-signed-and-encrypted-container-images-ff6e98b65bcd) ππππ [ENTERPRISE-STABLE] β A curated reference on itnext.io: Securing Kubernetes Workloads: A Practical Approach to Signed and Encrypted Container Images for modern cloud native architectures.
- **(2026)** [**Securing Kubernetes Apps with Keycloak and Gatekeeper**](https://fdk.codes/securing-kubernetes-apps-with-keycloak-and-gatekeeper) ππππ [ENTERPRISE-STABLE] β A curated reference on Securing Kubernetes Apps with Keycloak and Gatekeeper for modern cloud native architectures.
- **(2026)** [**blog.getambassador.io: Step-by-Step Centralized Authentication for Kubernetes with Keycloak and the Ambassador Edge Stack**](https://blog.getambassador.io/centralized-authentication-with-keycloak-and-ambassador-edge-stack-d509ffbc7b6f) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.getambassador.io: Step-by-Step Centralized Authentication for Kubernetes with Keycloak and the Ambassador Edge Stack for modern cloud native architectures.
- **(2026)** [**blog.sighup.io: How to run Keycloak in HA on Kubernetes**](https://blog.sighup.io/keycloak-ha-on-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.sighup.io: How to run Keycloak in HA on Kubernetes for modern cloud native architectures.
- **(2026)** [**blog.flant.com: Running fault-tolerant Keycloak with Infinispan in Kubernetes**](https://palark.com/blog/ha-keycloak-infinispan-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.flant.com: Running fault-tolerant Keycloak with Infinispan in Kubernetes for modern cloud native architectures.
- **(2026)** [**medium.com/@amirhosseineidy: Kubernetes authentication with keycloak oidc**](https://medium.com/@amirhosseineidy/kubernetes-authentication-with-keycloak-oidc-63571eaeed61) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@amirhosseineidy: Kubernetes authentication with keycloak oidc for modern cloud native architectures.
- **(2026)** [**medium.com/@martin.hodges: How to install Keycloak IAM on your Kubernetes cluster, backed by Postgres**](https://medium.com/@martin.hodges/how-to-install-keycloak-iam-on-your-kubernetes-cluster-backed-by-postgres-1228eae4faeb) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@martin.hodges: How to install Keycloak IAM on your Kubernetes cluster, backed by Postgres for modern cloud native architectures.
- **(2026)** [**confluent.io: How to Manage Secrets for Confluent with Kubernetes and HashiCorp Vault**](https://www.confluent.io/blog/manage-secrets-with-kubernetes-and-hashicorp-vault) ππππ [ENTERPRISE-STABLE] β A curated reference on confluent.io: How to Manage Secrets for Confluent with Kubernetes and HashiCorp Vault for modern cloud native architectures.
- **(2026)** [**testdriven.io: Running Vault and Consul on Kubernetes**](https://testdriven.io/blog/running-vault-and-consul-on-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on testdriven.io: Running Vault and Consul on Kubernetes for modern cloud native architectures.
- **(2026)** [**devopscube.com: How to Setup Vault in Kubernetes- Beginners Tutorial π**](https://devopscube.com/vault-in-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on devopscube.com: How to Setup Vault in Kubernetes- Beginners Tutorial π for modern cloud native architectures.
- **(2026)** [**medium: Install Hashicorp Vault on Kubernetes using Helm - Part 1 | Marco Franssen**](https://marcofranssen.nl/install-hashicorp-vault-on-kubernetes-using-helm-part-1) ππππ [ENTERPRISE-STABLE] β A curated reference on medium: Install Hashicorp Vault on Kubernetes using Helm - Part 1 | Marco Franssen for modern cloud native architectures.
- **(2026)** [**piotrminkowski.com: Vault on Kubernetes with Spring Cloud**](https://piotrminkowski.com/2021/12/30/vault-on-kubernetes-with-spring-cloud) ππππ [ENTERPRISE-STABLE] β A curated reference on piotrminkowski.com: Vault on Kubernetes with Spring Cloud for modern cloud native architectures.
- **(2026)** [**blog.devops.dev: Using Vault in Kubernetes Production for Security Engineers**](https://blog.devops.dev/using-vault-in-kubernetes-production-for-security-engineers-54d2f0aca4d1) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.devops.dev: Using Vault in Kubernetes Production for Security Engineers for modern cloud native architectures.
- **(2026)** [**hashicorp.com: HashiCorp Vault 1.11 Adds Kubernetes Secrets Engine, PKI Updates, and More π**](https://www.hashicorp.com/blog/vault-1-11) ππππ [ENTERPRISE-STABLE] β A curated reference on hashicorp.com: HashiCorp Vault 1.11 Adds Kubernetes Secrets Engine, PKI Updates, and More π for modern cloud native architectures.
- **(2026)** [**medium.com/@nikhil.purva: Securing Kubernetes Secrets with HashiCorp Vault**](https://medium.com/@nikhil.purva/securing-kubernetes-secrets-with-hashicorp-vault-a9555728e095) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@nikhil.purva: Securing Kubernetes Secrets with HashiCorp Vault for modern cloud native architectures.
- **(2026)** [**medium.com/@martin.hodges: Introduction to Vault to provide secret management in your Kubernetes cluster**](https://medium.com/@martin.hodges/introduction-to-vault-to-provide-secret-management-in-your-kubernetes-cluster-658b58372569) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@martin.hodges: Introduction to Vault to provide secret management in your Kubernetes cluster for modern cloud native architectures.
- **(2026)** [**medium.com/@martin.hodges: Enabling TLS on your Vault cluster on Kubernetes**](https://medium.com/@martin.hodges/enabling-tls-on-your-vault-cluster-on-kubernetes-0d20439b13d0) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@martin.hodges: Enabling TLS on your Vault cluster on Kubernetes for modern cloud native architectures.
- **(2026)** [**medium.com/@muppedaanvesh: A Hands-On Guide to Vault in Kubernetes**](https://medium.com/@muppedaanvesh/a-hand-on-guide-to-vault-in-kubernetes-%EF%B8%8F-1daf73f331bd) ππππ [ENTERPRISE-STABLE] β A curated reference on medium.com/@muppedaanvesh: A Hands-On Guide to Vault in Kubernetes for modern cloud native architectures.
- **(2026)** [**akv2k8s.io: Azure Key Vault to Kubernetes akv2k8s π**](https://akv2k8s.io) ππππ [ENTERPRISE-STABLE] β A curated reference on akv2k8s.io: Azure Key Vault to Kubernetes akv2k8s π for modern cloud native architectures.
- **(2026)** [**Azure Key Vault to Kubernetes**](https://github.com/SparebankenVest/azure-key-vault-to-kubernetes) β 452 ππππ [ENTERPRISE-STABLE] β A curated reference on Azure Key Vault to Kubernetes for modern cloud native architectures.
- **(2026)** [**techcommunity.microsoft.com: In preview: Azure Key Vault secrets provider extension for Arc enabled Kubernetes clusters**](https://techcommunity.microsoft.com/blog/azurearcblog/in-preview-azure-key-vault-secrets-provider-extension-for-arc-enabled-kubernetes/3002160) ππππ [ENTERPRISE-STABLE] β A curated reference on techcommunity.microsoft.com: In preview: Azure Key Vault secrets provider extension for Arc enabled Kubernetes clusters for modern cloud native architectures.
- **(2026)** [**dev.to: Manage your secrets in Git with SOPS for Kubernetes π**](https://dev.to/stack-labs/manage-your-secrets-in-git-with-sops-for-kubernetes-57me) ππππ [ENTERPRISE-STABLE] β A curated reference on dev.to: Manage your secrets in Git with SOPS for Kubernetes π for modern cloud native architectures.
- **(2026)** [**GitOps secret management with bitnami-labs Sealed Secret and GoDaddy Kubernetes External Secrets π**](https://www.redhat.com/en/blog/gitops-secret-management) ππππ [ENTERPRISE-STABLE] β A curated reference on GitOps secret management with bitnami-labs Sealed Secret and GoDaddy Kubernetes External Secrets π for modern cloud native architectures.
- **(2026)** [**aws.amazon.com: Managing secrets deployment in Kubernetes using Sealed Secrets π**](https://aws.amazon.com/blogs/opensource/managing-secrets-deployment-in-kubernetes-using-sealed-secrets) ππππ [ENTERPRISE-STABLE] β A curated reference on aws.amazon.com: Managing secrets deployment in Kubernetes using Sealed Secrets π for modern cloud native architectures.
- **(2026)** [**itnext.io: Secrets injection at runtime from external Vault into Kubernetes β POC**](https://itnext.io/secrets-injection-from-external-vault-into-kubernetes-poc-83a52c8cf5cb) ππππ [ENTERPRISE-STABLE] β A curated reference on itnext.io: Secrets injection at runtime from external Vault into Kubernetes β POC for modern cloud native architectures.
- **(2026)** [**thenewstack.io: Managing Kubernetes Secrets with AWS Secrets Manager π**](https://thenewstack.io/managing-kubernetes-secrets-with-aws-secrets-manager) ππππ [ENTERPRISE-STABLE] β A curated reference on thenewstack.io: Managing Kubernetes Secrets with AWS Secrets Manager π for modern cloud native architectures.
- **(2026)** [**itnext.io: Hardening Docker and Kubernetes with seccomp π**](https://itnext.io/hardening-docker-and-kubernetes-with-seccomp-a88b1b4e2111) ππππ [ENTERPRISE-STABLE] β A curated reference on itnext.io: Hardening Docker and Kubernetes with seccomp π for modern cloud native architectures.
- **(2026)** [**betterprogramming.pub: Secure Your Kubernetes Cluster With Seccomp**](https://betterprogramming.pub/secure-your-kubernetes-cluster-with-seccomp-9403ecf831b2) ππππ [ENTERPRISE-STABLE] β A curated reference on betterprogramming.pub: Secure Your Kubernetes Cluster With Seccomp for modern cloud native architectures.
- **(2026)** [**blog.nody.cc: Verify your Kubernetes Cluster Network Policies: From Faith to Proof**](https://blog.nody.cc/posts/2020-06-kubernetes-network-policy-verification) ππππ [ENTERPRISE-STABLE] β A curated reference on blog.nody.cc: Verify your Kubernetes Cluster Network Policies: From Faith to Proof for modern cloud native architectures.
- **(2026)** [**medium: Kubernetes Network Policies: Are They Really Useful?**](https://medium.com/@senthilrch/kubernetes-network-polices-are-they-really-useful-c3a153c49316) ππππ [ENTERPRISE-STABLE] β A curated reference on medium: Kubernetes Network Policies: Are They Really Useful? for modern cloud native architectures.
- **(2026)** [**europeclouds.com: Implementing Aqua Security to Secure Kubernetes**](https://www.europeclouds.com/blog/implementing-aqua-security-to-secure-kubernetes) ππππ [ENTERPRISE-STABLE] β A curated reference on europeclouds.com: Implementing Aqua Security to Secure Kubernetes for modern cloud native architectures.
- **(2026)** [**falco.org: Detect Malicious Behaviour on Kubernetes API Server through gathering Audit Logs by using FluentBit - Part 2**](https://falco.org/blog/detect-malicious-behaviour-on-kubernetes-api-server-through-gathering-audit-logs-by-using-fluentbit-part-2) ππππ [ENTERPRISE-STABLE] β A curated reference on falco.org: Detect Malicious Behaviour on Kubernetes API Server through gathering Audit Logs by using FluentBit - Part 2 for modern cloud native architectures.
- **(2026)** [**itnext.io: Protecting Your Kubernetes Environment With KubeArmor**](https://itnext.io/protecting-your-kubernetes-environment-with-kubearmor-76b02fc2209b) ππππ [ENTERPRISE-STABLE] β A curated reference on itnext.io: Protecting Your Kubernetes Environment With KubeArmor for modern cloud native architectures.
- **(2026)** [**intezer.com: New Attacks on Kubernetes via Misconfigured Argo Workflows**](https://intezer.com/blog/new-attacks-on-kubernetes-via-misconfigured-argo-workflows) ππππ [ENTERPRISE-STABLE] β A curated reference on intezer.com: New Attacks on Kubernetes via Misconfigured Argo Workflows for modern cloud native architectures.
- **(2026)** [**armosec.io: Use Kubescape to check if your Kubernetes clusters are exposed to the latest K8s Symlink vulnerability (CVE-2021-25741)**](https://www.armosec.io/cve-vulnerability-database) ππππ [ENTERPRISE-STABLE] β A curated reference on armosec.io: Use Kubescape to check if your Kubernetes clusters are exposed to the latest K8s Symlink vulnerability (CVE-2021-25741) for modern cloud native architectures.
- **(2026)** [**Kubernetes-Secrets-Store-CSI-Driver: Secrets Store CSI driver for Kubernetes' secrets**](https://github.com/kubernetes-sigs/secrets-store-csi-driver) β 1537 ππππ [ENTERPRISE-STABLE] β A curated reference on Kubernetes-Secrets-Store-CSI-Driver: Secrets Store CSI driver for Kubernetes' secrets for modern cloud native architectures.
- **(2026)** [devopszone.info: DevSecOps Explained](https://www.devopszone.info/post/devsecops-explained) πππ [COMMUNITY-TOOL] β A curated reference on devopszone.info: DevSecOps Explained for modern cloud native architectures.
- **(2026)** [snyk.io: The State of Open Source Security 2020](https://snyk.io/articles/open-source-security) πππ [COMMUNITY-TOOL] β A curated reference on snyk.io: The State of Open Source Security 2020 for modern cloud native architectures.
- **(2026)** [loves.cloud: Creating a fully automated DevSecOps CI/CD Pipeline](https://loves.cloud/creation-of-a-fully-automated-devsecops-cicd-pipeline) πππ [COMMUNITY-TOOL] β A curated reference on loves.cloud: Creating a fully automated DevSecOps CI/CD Pipeline for modern cloud native architectures.
- **(2026)** [thenewstack.io: Culture, Vulnerabilities and Budget: Why Devs and AppSec Disagree](https://thenewstack.io/culture-vulnerabilities-and-budget-why-devs-and-appsec-disagree) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Culture, Vulnerabilities and Budget: Why Devs and AppSec Disagree for modern cloud native architectures.
- **(2026)** [devops.com: How to Successfully Integrate Security and DevOps](https://devops.com/how-to-successfully-integrate-security-and-devops) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: How to Successfully Integrate Security and DevOps for modern cloud native architectures.
- **(2026)** [blog.christophetd.fr: Shifting Cloud Security Left β Scanning Infrastructure as Code for Security Issues](https://blog.christophetd.fr/shifting-cloud-security-left-scanning-infrastructure-as-code-for-security-issues) πππ [COMMUNITY-TOOL] β A curated reference on blog.christophetd.fr: Shifting Cloud Security Left β Scanning Infrastructure as Code for Security Issues for modern cloud native architectures.
- **(2026)** [devclass.com: Docker: Itβs not dead yet, but thereβs a tendency to walk away, security report finds](https://www.devclass.com/containers/2021/01/13/docker-its-not-dead-yet-but-theres-a-tendency-to-walk-away-security-report-finds/1620265) πππ [COMMUNITY-TOOL] β A curated reference on devclass.com: Docker: Itβs not dead yet, but thereβs a tendency to walk away, security report finds for modern cloud native architectures.
- **(2026)** [securityboulevard.com: DevOps vs. DevSecOps β Hereβs How They Fit Together](https://securityboulevard.com/2021/02/devops-vs-devsecops-heres-how-they-fit-together) πππ [COMMUNITY-TOOL] β A curated reference on securityboulevard.com: DevOps vs. DevSecOps β Hereβs How They Fit Together for modern cloud native architectures.
- **(2026)** [opensource.com: How to adopt DevSecOps successfully](https://opensource.com/article/21/2/devsecops) πππ [COMMUNITY-TOOL] β A curated reference on opensource.com: How to adopt DevSecOps successfully for modern cloud native architectures.
- **(2026)** [devops.com: DevSecOps Trends to Know For 2021](https://devops.com/devsecops-trends-for-2021) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: DevSecOps Trends to Know For 2021 for modern cloud native architectures.
- **(2026)** [devops.com: From Agile to DevOps to DevSecOps: The Next Evolution](https://devops.com/from-agile-to-devops-to-devsecops-the-next-evolution) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: From Agile to DevOps to DevSecOps: The Next Evolution for modern cloud native architectures.
- **(2026)** [permission.site](https://permission.site) πππ [COMMUNITY-TOOL] β A curated reference on permission.site for modern cloud native architectures.
- **(2026)** [ais.com: Leaping into DevSecOps from DevOps](https://www.ais.com/leaping-into-devsecops-from-devops) πππ [COMMUNITY-TOOL] β A curated reference on ais.com: Leaping into DevSecOps from DevOps for modern cloud native architectures.
- **(2026)** [amazon.com: Building end-to-end AWS DevSecOps CI/CD pipeline with open source SCA, SAST and DAST tools](https://aws.amazon.com/blogs/devops/building-end-to-end-aws-devsecops-ci-cd-pipeline-with-open-source-sca-sast-and-dast-tools) πππ [COMMUNITY-TOOL] β A curated reference on amazon.com: Building end-to-end AWS DevSecOps CI/CD pipeline with open source SCA, SAST and DAST tools for modern cloud native architectures.
- **(2026)** [addteq.com: The REAL Difference between DevOps and DevSecOps](https://www.addteq.com/blog/2021/03/the-real-difference-between-devops-and-devsecops) πππ [COMMUNITY-TOOL] β A curated reference on addteq.com: The REAL Difference between DevOps and DevSecOps for modern cloud native architectures.
- **(2026)** [devops.com: SecDevOps is the Solution to Cybersecurity π](https://devops.com/secdevops-is-the-solution-to-cybersecurity) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: SecDevOps is the Solution to Cybersecurity π for modern cloud native architectures.
- **(2026)** [cybersecuritydive.com: Relationships between DevOps, security warm slowly](https://www.cybersecuritydive.com/news/developer-security-gitlab-devsecops/599599) πππ [COMMUNITY-TOOL] β A curated reference on cybersecuritydive.com: Relationships between DevOps, security warm slowly for modern cloud native architectures.
- **(2026)** [bbvanexttechnologies.com: FilosofΓa DevSecOps en el desarrollo de aplicaciones sobre Azure](https://www.bbvanexttechnologies.com/blogs/filosofia-devsecops-en-el-desarrollo-de-aplicaciones-sobre-azure) πππ [COMMUNITY-TOOL] β A curated reference on bbvanexttechnologies.com: FilosofΓa DevSecOps en el desarrollo de aplicaciones sobre Azure for modern cloud native architectures.
- **(2026)** [cloudify.co: Ansible Vs Terraform π](https://docs.cloudify.co) πππ [COMMUNITY-TOOL] β A curated reference on cloudify.co: Ansible Vs Terraform π for modern cloud native architectures.
- **(2026)** [containerjournal.com: The What and Why of Cloud-Native Security](https://cloudnativenow.com/editorial-calendar/cloud-native-security/the-what-and-why-of-cloud-native-security) πππ [COMMUNITY-TOOL] β A curated reference on containerjournal.com: The What and Why of Cloud-Native Security for modern cloud native architectures.
- **(2026)** [thenewstack.io: Where Are You on the DevSecOps Maturity Curve?](https://thenewstack.io/where-are-you-on-the-devsecops-maturity-curve) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Where Are You on the DevSecOps Maturity Curve? for modern cloud native architectures.
- **(2026)** [thenewstack.io: The Top 5 Secrets Management Mistakes and How to Avoid Them](https://thenewstack.io/the-top-5-secrets-management-mistakes-and-how-to-avoid-them) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: The Top 5 Secrets Management Mistakes and How to Avoid Them for modern cloud native architectures.
- **(2026)** [arsouyes.org: PKCS, pem, der, key, crt,...](https://www.arsouyes.org/articles/2021/2021-06-21_PKCS_pem_der_key_crt) πππ [COMMUNITY-TOOL] β A curated reference on arsouyes.org: PKCS, pem, der, key, crt,... for modern cloud native architectures.
- **(2026)** [torq.io: 5 Security Automation Examples for Non-Developers](https://torq.io/blog/5-security-automation-examples-for-non-developers) πππ [COMMUNITY-TOOL] β A curated reference on torq.io: 5 Security Automation Examples for Non-Developers for modern cloud native architectures.
- **(2026)** [dqindia.com: Secure your CI/CD pipeline with these tips from experts](https://www.dqindia.com/secure-cicd-pipeline-tips-experts) πππ [COMMUNITY-TOOL] β A curated reference on dqindia.com: Secure your CI/CD pipeline with these tips from experts for modern cloud native architectures.
- **(2026)** [thenewstack.io: The DevSecOps Skillsets Required for Cloud Deployments](https://thenewstack.io/the-devsecops-skillsets-required-for-cloud-deployments) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: The DevSecOps Skillsets Required for Cloud Deployments for modern cloud native architectures.
- **(2026)** [devblogs.microsoft.com: You canβt have security for DevOps until you have DevOps for security](https://devblogs.microsoft.com/engineering-at-microsoft/you-cant-have-security-for-devops-until-you-have-devops-for-security) πππ [COMMUNITY-TOOL] β A curated reference on devblogs.microsoft.com: You canβt have security for DevOps until you have DevOps for security for modern cloud native architectures.
- **(2026)** [goteleport.com: Anatomy of a Cloud Infrastructure Attack via a Pull Request](https://goteleport.com/blog/hack-via-pull-request) πππ [COMMUNITY-TOOL] β A curated reference on goteleport.com: Anatomy of a Cloud Infrastructure Attack via a Pull Request for modern cloud native architectures.
- **(2026)** [cncf/tag-security: CNCF Security Technical Advisory Group π](https://github.com/cncf/tag-security) β 2264 πππ [COMMUNITY-TOOL] β A curated reference on cncf/tag-security: CNCF Security Technical Advisory Group π for modern cloud native architectures.
- **(2026)** [enterprisersproject.com: 5 DevSecOps open source projects to know](https://enterprisersproject.com/article/2021/8/5-devsecops-open-source-projects-know) πππ [COMMUNITY-TOOL] β A curated reference on enterprisersproject.com: 5 DevSecOps open source projects to know for modern cloud native architectures.
- **(2026)** [Clair](https://github.com/quay/clair) β 11012 πππ [ENTERPRISE-STABLE] β A curated reference on Clair for modern cloud native architectures.
- **(2026)** [thenewstack.io: 10 Steps to Simplify Your DevSecOps](https://thenewstack.io/10-steps-to-simplify-your-devsecops) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: 10 Steps to Simplify Your DevSecOps for modern cloud native architectures.
- **(2026)** [devops.com: Transform Mobile DevOps into Mobile DevSecOps](https://devops.com/transform-mobile-devops-into-mobile-devsecops) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: Transform Mobile DevOps into Mobile DevSecOps for modern cloud native architectures.
- **(2026)** [devops.com: Securing Your Software Development Pipelines](https://devops.com/securing-your-software-development-pipelines) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: Securing Your Software Development Pipelines for modern cloud native architectures.
- **(2026)** [thenewstack.io: How GitOps Benefits from Security-as-Code](https://thenewstack.io/how-gitops-benefits-from-security-as-code) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: How GitOps Benefits from Security-as-Code for modern cloud native architectures.
- **(2026)** [devops.com: Tips for a Successful DevSecOps Life Cycle](https://devops.com/tips-for-a-successful-devsecops-life-cycle) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: Tips for a Successful DevSecOps Life Cycle for modern cloud native architectures.
- **(2026)** [blog.aquasec.com: Advanced Persistent Threat Techniques Used in Container Attacks](https://blog.aquasec.com/advanced-persistent-threat-techniques-container-attacks) πππ [COMMUNITY-TOOL] β A curated reference on blog.aquasec.com: Advanced Persistent Threat Techniques Used in Container Attacks for modern cloud native architectures.
- **(2026)** [thenewstack.io: 5 Misconceptions About DevSecOps](https://thenewstack.io/5-misconceptions-about-devsecops) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: 5 Misconceptions About DevSecOps for modern cloud native architectures.
- **(2026)** [thenewstack.io: Why Cloud Native Systems Demand a Zero Trust Approach](https://thenewstack.io/why-cloud-native-systems-demand-a-zero-trust-approach) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Why Cloud Native Systems Demand a Zero Trust Approach for modern cloud native architectures.
- **(2026)** [dzone: Security Matters: Vulnerability Scanning Done Right! π](https://dzone.com/articles/security-matters-vulnerability-scanning-done-right-1) πππ [COMMUNITY-TOOL] β A curated reference on dzone: Security Matters: Vulnerability Scanning Done Right! π for modern cloud native architectures.
- **(2026)** [opensource.com: 5 open source security resources from 2021](https://opensource.com/article/21/12/open-source-security) πππ [COMMUNITY-TOOL] β A curated reference on opensource.com: 5 open source security resources from 2021 for modern cloud native architectures.
- **(2026)** [thenewstack.io: Open Source Democratized Software. Now Letβs Democratize Security](https://thenewstack.io/open-source-democratized-software-now-lets-democratize-security) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Open Source Democratized Software. Now Letβs Democratize Security for modern cloud native architectures.
- **(2026)** [goteleport.com: Why DevSecOps is Going Passwordless](https://goteleport.com/blog/devsecops-passwordless) πππ [COMMUNITY-TOOL] β A curated reference on goteleport.com: Why DevSecOps is Going Passwordless for modern cloud native architectures.
- **(2026)** [infosecwriteups.com: How I Discovered Thousands of Open Databases on AWS](https://infosecwriteups.com/how-i-discovered-thousands-of-open-databases-on-aws-764729aa7f32) πππ [COMMUNITY-TOOL] β A curated reference on infosecwriteups.com: How I Discovered Thousands of Open Databases on AWS for modern cloud native architectures.
- **(2026)** [thenewstack.io: Want Real Cybersecurity Progress? Redefine the Security Team](https://thenewstack.io/want-real-cybersecurity-progress-redefine-the-security-team) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Want Real Cybersecurity Progress? Redefine the Security Team for modern cloud native architectures.
- **(2026)** [devops.com: Taking a DevSecOps Approach to API Security](https://devops.com/why-traditional-approaches-to-api-security-dont-work) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: Taking a DevSecOps Approach to API Security for modern cloud native architectures.
- **(2026)** [devops.com: Continuous Security: The Next Evolution of CI/CD](https://devops.com/continuous-security-the-next-evolution-of-ci-cd) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: Continuous Security: The Next Evolution of CI/CD for modern cloud native architectures.
- **(2026)** [devops.com: How to Seamlessly Transition to DevSecOps](https://devops.com/how-to-seamlessly-transition-to-devsecops) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: How to Seamlessly Transition to DevSecOps for modern cloud native architectures.
- **(2026)** [thenewstack.io: SecOps in a Post-COVID World: 3 Security Trends to Watch](https://thenewstack.io/secops-in-a-post-covid-world-3-security-trends-to-watch) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: SecOps in a Post-COVID World: 3 Security Trends to Watch for modern cloud native architectures.
- **(2026)** [medium.com/microservices-learning: How to implement security for microservices](https://medium.com/microservices-learning/how-to-implement-security-for-microservices-89b140d3e555) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/microservices-learning: How to implement security for microservices for modern cloud native architectures.
- **(2026)** [medium.com/@anshuman2121: DevSecOps: Implement security on CICD Pipeline](https://medium.com/@anshuman2121/devsecops-implement-security-on-cicd-pipeline-19eb7aa22626) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@anshuman2121: DevSecOps: Implement security on CICD Pipeline for modern cloud native architectures.
- **(2026)** [medium.com/technology-hits: Incomplete Guide for Securing Containerized Environment π](https://medium.com/technology-hits/incomplete-guide-for-securing-containerized-environment-78b57fc3238) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/technology-hits: Incomplete Guide for Securing Containerized Environment π for modern cloud native architectures.
- **(2026)** [medium.com/@jonathan_37674: How to Keep your CI/CD Pipelines Secure? | ARMO](https://medium.com/@jonathan_37674/how-to-keep-your-ci-cd-pipelines-secure-armo-8e962bc51fb6) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@jonathan_37674: How to Keep your CI/CD Pipelines Secure? | ARMO for modern cloud native architectures.
- **(2026)** [betanews.com: Cloud security is complex -- but most vulnerabilities fall into three key categories](https://betanews.com/2022/10/22/cloud-security-is-complex-but-most-vulnerabilities-fall-into-three-key-categories) πππ [COMMUNITY-TOOL] β A curated reference on betanews.com: Cloud security is complex -- but most vulnerabilities fall into three key categories for modern cloud native architectures.
- **(2026)** [medium.com/@pbijjala: Container security, an eco system view](https://medium.com/@pbijjala/container-security-an-eco-system-183dbffdf2d8) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@pbijjala: Container security, an eco system view for modern cloud native architectures.
- **(2026)** [hmaslowski.com: macOS Security hardening with Microsoft Intune](https://hmaslowski.com/home/f/macos-security-hardening-with-microsoft-intune) πππ [COMMUNITY-TOOL] β A curated reference on hmaslowski.com: macOS Security hardening with Microsoft Intune for modern cloud native architectures.
- **(2026)** [dzone.com: How To Manage Vulnerabilities in Modern Cloud-Native Applications](https://dzone.com/articles/how-to-manage-vulnerabilities-in-modern-cloud-nati) πππ [COMMUNITY-TOOL] β A curated reference on dzone.com: How To Manage Vulnerabilities in Modern Cloud-Native Applications for modern cloud native architectures.
- **(2026)** [auth0.com: A Passwordless Future! Passkeys for Java Developers](https://auth0.com/blog/webauthn-and-passkeys-for-java-developers) πππ [COMMUNITY-TOOL] β A curated reference on auth0.com: A Passwordless Future! Passkeys for Java Developers for modern cloud native architectures.
- **(2026)** [dzone.com: What Is Zero Trust Security? π](https://dzone.com/articles/what-is-zero-trust-security) πππ [COMMUNITY-TOOL] β A curated reference on dzone.com: What Is Zero Trust Security? π for modern cloud native architectures.
- **(2026)** [cisecurity.org: Where Does Zero Trust Begin and Why is it Important?](https://www.cisecurity.org/insights/blog/where-does-zero-trust-begin-and-why-is-it-important) πππ [COMMUNITY-TOOL] β A curated reference on cisecurity.org: Where Does Zero Trust Begin and Why is it Important? for modern cloud native architectures.
- **(2026)** [devops.com: DevOps Security: Your Complete Checklist](https://devops.com/devops-security-your-complete-checklist) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: DevOps Security: Your Complete Checklist for modern cloud native architectures.
- **(2026)** [Configure Microsoft Entra for Increased Security](https://learn.microsoft.com/en-us/entra/fundamentals/configure-security) πππ [COMMUNITY-TOOL] β A curated reference on Configure Microsoft Entra for Increased Security for modern cloud native architectures.
- **(2026)** [thenewstack.io: How Do Authentication and Authorization Differ?](https://thenewstack.io/how-do-authentication-and-authorization-differ) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: How Do Authentication and Authorization Differ? for modern cloud native architectures.
- **(2026)** [oauth2-proxy/oauth2-proxy: OAuth2 Proxy π](https://github.com/oauth2-proxy/oauth2-proxy) β 14517 πππ [ENTERPRISE-STABLE] β A curated reference on ==oauth2-proxy/oauth2-proxy: OAuth2 Proxy== π for modern cloud native architectures.
- **(2026)** [manfredmlange.medium.com: Containerized Keycloak in Development](https://manfredmlange.medium.com/containerized-keycloak-in-development-2f9d079ec4a3) πππ [COMMUNITY-TOOL] β A curated reference on manfredmlange.medium.com: Containerized Keycloak in Development for modern cloud native architectures.
- **(2026)** [dev.to/fidalmathew: Session-Based vs. Token-Based Authentication: Which is better?](https://dev.to/fidalmathew/session-based-vs-token-based-authentication-which-is-better-227o) πππ [COMMUNITY-TOOL] β A curated reference on dev.to/fidalmathew: Session-Based vs. Token-Based Authentication: Which is better? for modern cloud native architectures.
- **(2026)** [dev.to/irakan: Is JWT really a good fit for authentication?](https://dev.to/irakan/is-jwt-really-a-good-fit-for-authentication-1khm) πππ [COMMUNITY-TOOL] β A curated reference on dev.to/irakan: Is JWT really a good fit for authentication? for modern cloud native architectures.
- **(2026)** [dzone: DevOps Pipeline Quality Gates: A Double-Edged Sword](https://dzone.com/articles/devops-pipeline-quality-gates-a-double-edged-sword) πππ [COMMUNITY-TOOL] β A curated reference on dzone: DevOps Pipeline Quality Gates: A Double-Edged Sword for modern cloud native architectures.
- **(2026)** [medium: Focusing on the DevOps Pipeline π](https://medium.com/capital-one-tech/focusing-on-the-devops-pipeline-topo-pal-833d15edf0bd) πππ [COMMUNITY-TOOL] β A curated reference on medium: Focusing on the DevOps Pipeline π for modern cloud native architectures.
- **(2026)** [github.com/hygieia/Hygieia π](https://github.com/hygieia/Hygieia) β 3819 πππ [ENTERPRISE-STABLE] β A curated reference on github.com/hygieia/Hygieia π for modern cloud native architectures.
- **(2026)** [KubeLinter](https://github.com/stackrox/kube-linter) β 3469 πππ [ENTERPRISE-STABLE] β A curated reference on KubeLinter for modern cloud native architectures.
- **(2026)** [github.com/yannh/kubeconform π](https://github.com/yannh/kubeconform) β 3066 πππ [ENTERPRISE-STABLE] β A curated reference on github.com/yannh/kubeconform π for modern cloud native architectures.
- **(2026)** [thenewstack.io: Security Insights into Infrastructure-as-Code](https://thenewstack.io/security-insights-into-infrastructure-as-code) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Security Insights into Infrastructure-as-Code for modern cloud native architectures.
- **(2026)** [Falco.org](https://falco.org) πππ [COMMUNITY-TOOL] β A curated reference on Falco.org for modern cloud native architectures.
- **(2026)** [Security Patterns for Microservice Architectures](https://developer.okta.com/blog/2020/03/23/microservice-security-patterns) πππ [COMMUNITY-TOOL] β A curated reference on Security Patterns for Microservice Architectures for modern cloud native architectures.
- **(2026)** [Anchore](https://anchore.com) πππ [COMMUNITY-TOOL] β A curated reference on Anchore for modern cloud native architectures.
- **(2026)** [thenewstack.io: Anchore: Scan Your Container Images for Vulnerabilities from the Command Line](https://thenewstack.io/anchore-scan-your-container-images-for-vulnerabilities-from-the-command-line) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Anchore: Scan Your Container Images for Vulnerabilities from the Command Line for modern cloud native architectures.
- **(2026)** [Threat Stack](https://www.f5.com/products/distributed-cloud-services) πππ [COMMUNITY-TOOL] β A curated reference on Threat Stack for modern cloud native architectures.
- **(2026)** [vashishtsumit89.medium.com: Security/Pen Testing: A guide to run OWASP Zap headless in containers for CI/CD pipeline](https://vashishtsumit89.medium.com/security-pen-testing-a-guide-to-run-owasp-zap-headless-in-containers-for-ci-cd-pipeline-ddb580dae3c8) πππ [COMMUNITY-TOOL] β A curated reference on vashishtsumit89.medium.com: Security/Pen Testing: A guide to run OWASP Zap headless in containers for CI/CD pipeline for modern cloud native architectures.
- **(2026)** [cloud.google.com: OWASP Top 10 mitigation options on Google Cloud π](https://docs.cloud.google.com/architecture/security/owasp-top-ten-mitigation) πππ [COMMUNITY-TOOL] β A curated reference on cloud.google.com: OWASP Top 10 mitigation options on Google Cloud π for modern cloud native architectures.
- **(2026)** [thenewstack.io: Latest OWASP Top 10 Surfaces Web Development Security Bugs](https://thenewstack.io/the-latest-owasp-top-10-looks-a-lot-like-the-old-owasp) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Latest OWASP Top 10 Surfaces Web Development Security Bugs for modern cloud native architectures.
- **(2026)** [thenewstack.io: OWASP Top 10: A Guide to the Worst Software Vulnerabilities](https://thenewstack.io/owasp-top-10-a-guide-to-the-worst-software-vulnerabilities) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: OWASP Top 10: A Guide to the Worst Software Vulnerabilities for modern cloud native architectures.
- **(2026)** [owasp.org: OWASP API Security Project π](https://owasp.org/www-project-api-security) πππ [COMMUNITY-TOOL] β A curated reference on owasp.org: OWASP API Security Project π for modern cloud native architectures.
- **(2026)** [cequence.ai: The OWASP API Security Top 10 From a Real-World Perspective](https://www.cequence.ai/blog/owasp-api-security-top-10-from-a-real-world-perspective) πππ [COMMUNITY-TOOL] β A curated reference on cequence.ai: The OWASP API Security Top 10 From a Real-World Perspective for modern cloud native architectures.
- **(2026)** [securityonline.info: VAmPI: Vulnerable REST API with OWASP top 10 vulnerabilities](https://securityonline.info/vampi-vulnerable-rest-api-with-owasp-top-10-vulnerabilities) πππ [COMMUNITY-TOOL] β A curated reference on securityonline.info: VAmPI: Vulnerable REST API with OWASP top 10 vulnerabilities for modern cloud native architectures.
- **(2026)** [trivy](https://github.com/aquasecurity/trivy) β 36431 πππ [DE FACTO STANDARD] β A curated reference on trivy for modern cloud native architectures.
- **(2026)** [blog.aquasec.com: A Security Review of Docker Official Images: Which Do You Trust? (with trivy)](https://blog.aquasec.com/docker-official-images) πππ [COMMUNITY-TOOL] β A curated reference on blog.aquasec.com: A Security Review of Docker Official Images: Which Do You Trust? (with trivy) for modern cloud native architectures.
- **(2026)** [iximiuz.com: The need for slimmer containers. Scanning official Python images with Snyk](https://iximiuz.com/en/posts/thick-container-vulnerabilities) πππ [COMMUNITY-TOOL] β A curated reference on iximiuz.com: The need for slimmer containers. Scanning official Python images with Snyk for modern cloud native architectures.
- **(2026)** [gkovan.medium.com: A Zero Trust Approach for Securing the Supply Chain of Microservices Packaged as Container Images (sigstore, kyverno, openshift tekton, quarkus) π](https://gkovan.medium.com/a-zero-trust-approach-for-securing-the-supply-chain-of-microservices-packaged-as-container-images-89d2f5b7293b) πππ [COMMUNITY-TOOL] β A curated reference on gkovan.medium.com: A Zero Trust Approach for Securing the Supply Chain of Microservices Packaged as Container Images (sigstore, kyverno, openshift tekton, quarkus) π for modern cloud native architectures.
- **(2026)** [thenewstack.io: Find Vulnerabilities in Container Images with Docker Scan](https://thenewstack.io/find-vulnerabilities-in-container-images-with-docker-scan) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Find Vulnerabilities in Container Images with Docker Scan for modern cloud native architectures.
- **(2026)** [medium.com/@nanditasahu031: DevSecOps β Implementing Secure CI/CD Pipelines π](https://medium.com/@nanditasahu031/devsecops-implementing-secure-ci-cd-pipelines-9653726b4916) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@nanditasahu031: DevSecOps β Implementing Secure CI/CD Pipelines π for modern cloud native architectures.
- **(2026)** [deepfence/YaraHunter](https://github.com/deepfence/YaraHunter) β 1321 πππ [COMMUNITY-TOOL] β A curated reference on deepfence/YaraHunter for modern cloud native architectures.
- **(2026)** [Anchore: Secure Container Based CI/CD Workflows](https://anchore.com/cicd) πππ [COMMUNITY-TOOL] β A curated reference on Anchore: Secure Container Based CI/CD Workflows for modern cloud native architectures.
- **(2026)** [Jenkins Plugin: Anchore Container Image Scanner](https://plugins.jenkins.io/anchore-container-scanner) πππ [COMMUNITY-TOOL] β A curated reference on Jenkins Plugin: Anchore Container Image Scanner for modern cloud native architectures.
- **(2026)** [Notary](https://github.com/notaryproject/notary) β 3289 πππ [ENTERPRISE-STABLE] β A curated reference on Notary for modern cloud native architectures.
- **(2026)** [Cosign: Container Signing](https://github.com/sigstore/cosign) β 6041 πππ [ENTERPRISE-STABLE] β A curated reference on Cosign: Container Signing for modern cloud native architectures.
- **(2026)** [github.blog: Safeguard your containers with new container signing capability in GitHub Actions (cosign)](https://github.blog/security/supply-chain-security/safeguard-container-signing-capability-actions) πππ [COMMUNITY-TOOL] β A curated reference on github.blog: Safeguard your containers with new container signing capability in GitHub Actions (cosign) for modern cloud native architectures.
- **(2026)** [chrisns/cosign-keyless-demo: Cosign Keyless GitHub Action Demo](https://github.com/chrisns/cosign-keyless-demo) β 14 πππ [COMMUNITY-TOOL] β A curated reference on chrisns/cosign-keyless-demo: Cosign Keyless GitHub Action Demo for modern cloud native architectures.
- **(2026)** [blog.chainguard.dev: How To Verify Cosigned Container Images In Amazon ECS](https://www.chainguard.dev/unchained) πππ [COMMUNITY-TOOL] β A curated reference on blog.chainguard.dev: How To Verify Cosigned Container Images In Amazon ECS for modern cloud native architectures.
- **(2026)** [medium.com/@slimm609: Secure image signing with Cosign and AWS KMS](https://medium.com/@slimm609/secure-image-signing-with-cosign-and-aws-kms-82bc25d7fdae) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@slimm609: Secure image signing with Cosign and AWS KMS for modern cloud native architectures.
- **(2026)** [GitHub Code Security Risk Assessment: Free Vulnerability Scanning](https://github.blog/security/application-security/how-exposed-is-your-code-find-out-in-minutes-for-free) πππ [COMMUNITY-TOOL] β A curated reference on GitHub Code Security Risk Assessment: Free Vulnerability Scanning for modern cloud native architectures.
- **(2026)** [GitHub security: what does it take to protect your company from credentials leaking on GitHub? π](https://blog.gitguardian.com/github-security) πππ [COMMUNITY-TOOL] β A curated reference on GitHub security: what does it take to protect your company from credentials leaking on GitHub? π for modern cloud native architectures.
- **(2026)** [Databases in DMZ and Intranet](https://security.stackexchange.com/questions/58167/databases-in-dmz-and-intranet) πππ [COMMUNITY-TOOL] β A curated reference on Databases in DMZ and Intranet for modern cloud native architectures.
- **(2026)** [medium: The Easiest Way To Remove Checked In Credentials From A Git Repo](https://medium.com/@tanmay.avinash.deshpande/the-easiest-way-to-remove-checked-in-credentials-from-a-git-repo-704a373b94e3) πππ [COMMUNITY-TOOL] β A curated reference on medium: The Easiest Way To Remove Checked In Credentials From A Git Repo for modern cloud native architectures.
- **(2026)** [forbes.com: DevOps Drives Pentesting Delivered As A Service](https://www.forbes.com/sites/chenxiwang/2020/06/17/devops-drives-pentesting-delivered-as-a-service) πππ [COMMUNITY-TOOL] β A curated reference on forbes.com: DevOps Drives Pentesting Delivered As A Service for modern cloud native architectures.
- **(2026)** [patchthenet.medium.com: Introduction to SQL Injection](https://patchthenet.medium.com/introduction-to-sql-injection-sql-injection-for-beginners-579c00431d40) πππ [COMMUNITY-TOOL] β A curated reference on patchthenet.medium.com: Introduction to SQL Injection for modern cloud native architectures.
- **(2026)** [Authorizing multi-language microservices with Louketo Proxy](https://developers.redhat.com/blog/2020/08/03/authorizing-multi-language-microservices-with-louketo-proxy) πππ [COMMUNITY-TOOL] β A curated reference on Authorizing multi-language microservices with Louketo Proxy for modern cloud native architectures.
- **(2026)** [developers.redhat.com: A deep dive into Keycloak](https://developers.redhat.com/blog/2020/08/07/a-deep-dive-into-keycloak) πππ [COMMUNITY-TOOL] β A curated reference on developers.redhat.com: A deep dive into Keycloak for modern cloud native architectures.
- **(2026)** [developers.redhat.com: Authentication and authorization using the Keycloak REST API](https://developers.redhat.com/blog/2020/11/24/authentication-and-authorization-using-the-keycloak-rest-api) πππ [COMMUNITY-TOOL] β A curated reference on developers.redhat.com: Authentication and authorization using the Keycloak REST API for modern cloud native architectures.
- **(2026)** [faun.pub: Integrate Keycloak with HashiCorp Vault](https://faun.pub/integrate-keycloak-with-hashicorp-vault-5264a873dd2f) πππ [COMMUNITY-TOOL] β A curated reference on faun.pub: Integrate Keycloak with HashiCorp Vault for modern cloud native architectures.
- **(2026)** [baeldung.com: A Quick Guide to Using Keycloak with Spring Boot](https://www.baeldung.com/spring-boot-keycloak) πππ [COMMUNITY-TOOL] β A curated reference on baeldung.com: A Quick Guide to Using Keycloak with Spring Boot for modern cloud native architectures.
- **(2026)** [medium.com/@charled.breteche: Securing Grafana with Keycloak SSO](https://medium.com/@charled.breteche/securing-grafana-with-keycloak-sso-d01fec05d984) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@charled.breteche: Securing Grafana with Keycloak SSO for modern cloud native architectures.
- **(2026)** [dev.to: KeyCloak with Nginx Ingress](https://dev.to/aws-builders/keycloak-with-nginx-ingress-6fo) πππ [COMMUNITY-TOOL] β A curated reference on dev.to: KeyCloak with Nginx Ingress for modern cloud native architectures.
- **(2026)** [Git Credential Manager Core](https://github.com/git-ecosystem/git-credential-manager) β 8978 πππ [ENTERPRISE-STABLE] β A curated reference on Git Credential Manager Core for modern cloud native architectures.
- **(2026)** [Git Credential Manager Core: Building a universal authentication experience](https://github.blog/open-source/git/git-credential-manager-core-building-a-universal-authentication-experience) πππ [COMMUNITY-TOOL] β A curated reference on Git Credential Manager Core: Building a universal authentication experience for modern cloud native architectures.
- **(2026)** [blog.gitguardian.com: Secrets in source code (episode 2/3). Why secrets in git are such a problem](https://blog.gitguardian.com/secrets-credentials-api-git) πππ [COMMUNITY-TOOL] β A curated reference on blog.gitguardian.com: Secrets in source code (episode 2/3). Why secrets in git are such a problem for modern cloud native architectures.
- **(2026)** [smallstep.com: How to Handle Secrets on the Command Line π](https://smallstep.com/blog/command-line-secrets) πππ [COMMUNITY-TOOL] β A curated reference on smallstep.com: How to Handle Secrets on the Command Line π for modern cloud native architectures.
- **(2026)** [cloud.google.com: Analyze secrets with Cloud Asset Inventory](https://docs.cloud.google.com/secret-manager/docs/analyze-resources) πππ [COMMUNITY-TOOL] β A curated reference on cloud.google.com: Analyze secrets with Cloud Asset Inventory for modern cloud native architectures.
- **(2026)** [sops: Simple and flexible tool for managing secrets π](https://github.com/getsops/sops) β 22092 πππ [DE FACTO STANDARD] β A curated reference on sops: Simple and flexible tool for managing secrets π for modern cloud native architectures.
- **(2026)** [jenkins-x.io: Setting up the secrets for your installation](https://jayex.io/v3/admin/setup/secrets) πππ [COMMUNITY-TOOL] β A curated reference on jenkins-x.io: Setting up the secrets for your installation for modern cloud native architectures.
- **(2026)** [fpcomplete.com: Announcing Amber, encrypted secrets management](https://academy.fpblock.com/blog/announcing-amber-ci-secret-tool) πππ [COMMUNITY-TOOL] β A curated reference on fpcomplete.com: Announcing Amber, encrypted secrets management for modern cloud native architectures.
- **(2026)** [jfrog.com: How I Leaped Forward My Jenkins Build with JFrog Pipelines](https://jfrog.com/blog) πππ [COMMUNITY-TOOL] β A curated reference on jfrog.com: How I Leaped Forward My Jenkins Build with JFrog Pipelines for modern cloud native architectures.
- **(2026)** [github.com/keilerkonzept/aws-secretsmanager-files](https://pkg.go.dev/github.com/keilerkonzept/aws-secretsmanager-files) β 35 πππ [COMMUNITY-TOOL] β A curated reference on github.com/keilerkonzept/aws-secretsmanager-files for modern cloud native architectures.
- **(2026)** [medium: How to Handle Secrets Like a Pro Using Gitops](https://medium.com/containers-101/how-to-handle-secrets-like-a-pro-using-gitops-f3b812536434) πππ [COMMUNITY-TOOL] β A curated reference on medium: How to Handle Secrets Like a Pro Using Gitops for modern cloud native architectures.
- **(2026)** [jenkins-x/gsm-controller](https://github.com/jenkins-x/gsm-controller) β 25 πππ [COMMUNITY-TOOL] β A curated reference on jenkins-x/gsm-controller for modern cloud native architectures.
- **(2026)** [GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp: Google Secret' Manager Provider for Secret Store CSI Driver](https://github.com/GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp) β 267 πππ [COMMUNITY-TOOL] β A curated reference on GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp: Google Secret' Manager Provider for Secret Store CSI Driver for modern cloud native architectures.
- **(2026)** [devops.com: DevOps Teams Struggling to Keep Secrets](https://devops.com/devops-teams-struggling-to-keep-secrets) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: DevOps Teams Struggling to Keep Secrets for modern cloud native architectures.
- **(2026)** [developers.redhat.com: Protect secrets in Git with the clean/smudge filter](https://developers.redhat.com/articles/2022/02/02/protect-secrets-git-cleansmudge-filter) πππ [COMMUNITY-TOOL] β A curated reference on developers.redhat.com: Protect secrets in Git with the clean/smudge filter for modern cloud native architectures.
- **(2026)** [kubeopsskills/cloud-secret-resolvers: Cloud Secret Resolvers (CSR)](https://github.com/kubeopsskills/cloud-secret-resolvers) β 35 πππ [COMMUNITY-TOOL] β A curated reference on kubeopsskills/cloud-secret-resolvers: Cloud Secret Resolvers (CSR) for modern cloud native architectures.
- **(2026)** [thenewstack.io: Managing Secrets in Your DevOps Pipeline](https://thenewstack.io/managing-secrets-in-your-devops-pipeline) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Managing Secrets in Your DevOps Pipeline for modern cloud native architectures.
- **(2026)** [siddhivinayak-sk.medium.com: Kubeseal & SealedSecret: Make your βsecretsβ secure in SCM by using βsealed secretβ](https://siddhivinayak-sk.medium.com/kubeseal-sealedsecret-make-your-secrets-secure-in-scm-by-using-sealed-secret-4631bcb39bf8) πππ [COMMUNITY-TOOL] β A curated reference on siddhivinayak-sk.medium.com: Kubeseal & SealedSecret: Make your βsecretsβ secure in SCM by using βsealed secretβ for modern cloud native architectures.
- **(2026)** [commjoen/wrongsecrets: OWASP WrongSecrets](https://github.com/commjoen/wrongsecrets) πππ [COMMUNITY-TOOL] β A curated reference on ==commjoen/wrongsecrets: OWASP WrongSecrets== for modern cloud native architectures.
- **(2026)** [medium: AWS Secret Manager: Protect sensitive information and functionality π](https://medium.com/avmconsulting-blog/aws-secret-manager-protect-sensitive-information-and-functionality-f520e15293f4) πππ [COMMUNITY-TOOL] β A curated reference on medium: AWS Secret Manager: Protect sensitive information and functionality π for modern cloud native architectures.
- **(2026)** [blog.opstree.com: AWS Secret Manager](https://blog.opstree.com/2021/11/16/aws-secret-manager) πππ [COMMUNITY-TOOL] β A curated reference on blog.opstree.com: AWS Secret Manager for modern cloud native architectures.
- **(2026)** [aws/secrets-store-csi-driver-provider-aws: AWS Secrets Manager and Config' Provider for Secret Store CSI Driver](https://github.com/aws/secrets-store-csi-driver-provider-aws) β 587 πππ [COMMUNITY-TOOL] β A curated reference on aws/secrets-store-csi-driver-provider-aws: AWS Secrets Manager and Config' Provider for Secret Store CSI Driver for modern cloud native architectures.
- **(2026)** [medium.com/@ishana98dadhich: Integrating AWS Secret Manager with EKS and use Secrets inside the Pods: Part-1](https://medium.com/@ishana98dadhich/integrating-aws-secret-manager-with-eks-and-use-secrets-inside-the-pods-part-1-1938b0c3c2fb) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@ishana98dadhich: Integrating AWS Secret Manager with EKS and use Secrets inside the Pods: Part-1 for modern cloud native architectures.
- **(2026)** [unixarena.com: Terraform β Source credentials from AWS secret Manager](https://unixarena.com/2022/04/terraform-source-credentials-from-aws-secret-manager.html) πππ [COMMUNITY-TOOL] β A curated reference on unixarena.com: Terraform β Source credentials from AWS secret Manager for modern cloud native architectures.
- **(2026)** [pyca/bcrypt](https://github.com/pyca/bcrypt) β 1482 πππ [COMMUNITY-TOOL] β A curated reference on pyca/bcrypt for modern cloud native architectures.
- **(2026)** [argon2-cffi](https://argon2-cffi.readthedocs.io/en/stable) πππ [COMMUNITY-TOOL] β A curated reference on argon2-cffi for modern cloud native architectures.
- **(2026)** [docs.python.org: scrypt (standard library)](https://docs.python.org/3/library/hashlib.html) πππ [COMMUNITY-TOOL] β A curated reference on docs.python.org: scrypt (standard library) for modern cloud native architectures.
- **(2026)** [cryptography.io: scrypt (cryptography)](https://cryptography.io/en/latest/hazmat/primitives/key-derivation-functions) πππ [COMMUNITY-TOOL] β A curated reference on cryptography.io: scrypt (cryptography) for modern cloud native architectures.
- **(2026)** [git-secret.io](https://git-secret.io) πππ [COMMUNITY-TOOL] β A curated reference on git-secret.io for modern cloud native architectures.
- **(2026)** [git-cipher](https://github.com/wincent/git-cipher) β 90 πππ [COMMUNITY-TOOL] β A curated reference on git-cipher for modern cloud native architectures.
- **(2026)** [hashicorp/vault](https://github.com/hashicorp/vault) β 35780 πππ [DE FACTO STANDARD] β A curated reference on hashicorp/vault for modern cloud native architectures.
- **(2026)** [hashicorp/vault-csi-provider: HashiCorp Vault Provider for Secrets Store' CSI Driver](https://github.com/hashicorp/vault-csi-provider) β 347 πππ [COMMUNITY-TOOL] β A curated reference on hashicorp/vault-csi-provider: HashiCorp Vault Provider for Secrets Store' CSI Driver for modern cloud native architectures.
- **(2026)** [vaultproject.io](https://developer.hashicorp.com/vault) πππ [COMMUNITY-TOOL] β A curated reference on vaultproject.io for modern cloud native architectures.
- **(2026)** [medium: Coding for Secrets Reliability with HashiCorp Vault](https://medium.com/hashicorp-engineering/coding-for-secrets-reliability-with-hashicorp-vault-2090dd8667e) πππ [COMMUNITY-TOOL] β A curated reference on medium: Coding for Secrets Reliability with HashiCorp Vault for modern cloud native architectures.
- **(2026)** [medium: Securing K8s Ingress Traffic with HashiCorp Vault PKIaaS and JetStack Cert-Manager](https://medium.com/hashicorp-engineering/securing-k8s-ingress-traffic-with-hashicorp-vault-pkiaas-and-jetstack-cert-manager-cb46195742ca) πππ [COMMUNITY-TOOL] β A curated reference on medium: Securing K8s Ingress Traffic with HashiCorp Vault PKIaaS and JetStack Cert-Manager for modern cloud native architectures.
- **(2026)** [github.com/kelseyhightower: Serverless Vault with Cloud Run](https://github.com/kelseyhightower/serverless-vault-with-cloud-run) β 407 πππ [COMMUNITY-TOOL] β A curated reference on github.com/kelseyhightower: Serverless Vault with Cloud Run for modern cloud native architectures.
- **(2026)** [digitalvarys.com: Simple Introduction to HashiCorp Vault](https://digitalvarys.com/simple-introduction-to-hashicorp-vault) πππ [COMMUNITY-TOOL] β A curated reference on digitalvarys.com: Simple Introduction to HashiCorp Vault for modern cloud native architectures.
- **(2026)** [thenewstack.io: HashiCorp Releases HCP Vault to Combat βSecrets Managementβ Fatigue](https://thenewstack.io/hashicorps-releases-hcp-vault-to-combat-secrets-management-fatigue) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: HashiCorp Releases HCP Vault to Combat βSecrets Managementβ Fatigue for modern cloud native architectures.
- **(2026)** [datadoghq.com: Monitor HashiCorp Vault metrics and logs](https://www.datadoghq.com/blog/monitor-vault-metrics-and-logs) πππ [COMMUNITY-TOOL] β A curated reference on datadoghq.com: Monitor HashiCorp Vault metrics and logs for modern cloud native architectures.
- **(2026)** [thenewstack.io: Reasons to Implement HashiCorp Vault and Other Zero Trust Tools](https://thenewstack.io/reasons-to-implement-hashicorp-vault-and-other-zero-trust-tools) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Reasons to Implement HashiCorp Vault and Other Zero Trust Tools for modern cloud native architectures.
- **(2026)** [devopscube.com: Vault Agent Injector Tutorial: Inject Secrets to Pods Using Vault Agent](https://devopscube.com/vault-agent-injector-tutorial) πππ [COMMUNITY-TOOL] β A curated reference on devopscube.com: Vault Agent Injector Tutorial: Inject Secrets to Pods Using Vault Agent for modern cloud native architectures.
- **(2026)** [medium.com/@pratyush.mathur: Secrets Management Using Vault in K8S](https://medium.com/@pratyush.mathur/secrets-management-using-vault-in-k8s-272462c37fd8) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@pratyush.mathur: Secrets Management Using Vault in K8S for modern cloud native architectures.
- **(2026)** [alexandre-vazquez.com: How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes π](https://alexandre-vazquez.com/inject-secrets-in-pods-using-hashicorp-vault) πππ [COMMUNITY-TOOL] β A curated reference on alexandre-vazquez.com: How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes π for modern cloud native architectures.
- **(2026)** [medium.com/@calvineotieno010: Managing Application Secrets with Hashicorp Vault](https://medium.com/@calvineotieno010/managing-application-secrets-with-hashicorp-vault-8efb5e1d87fd) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/@calvineotieno010: Managing Application Secrets with Hashicorp Vault for modern cloud native architectures.
- **(2026)** [medium.com/nerd-for-tech: PKI Certs Injection to K8s Pods with Vault Agent Injector](https://medium.com/nerd-for-tech/pki-certs-injection-to-k8s-pods-with-vault-agent-injector-d97482b48f3d) πππ [COMMUNITY-TOOL] β A curated reference on medium.com/nerd-for-tech: PKI Certs Injection to K8s Pods with Vault Agent Injector for modern cloud native architectures.
- **(2026)** [docs.microsoft.com: Azure Key Vault](https://learn.microsoft.com/en-us/azure/key-vault/general/overview) πππ [COMMUNITY-TOOL] β A curated reference on docs.microsoft.com: Azure Key Vault for modern cloud native architectures.
- **(2026)** [azure.github.io: Azure Key Vault Provider for Secrets Store CSI Driver](https://azure.github.io/secrets-store-csi-driver-provider-azure) πππ [COMMUNITY-TOOL] β A curated reference on azure.github.io: Azure Key Vault Provider for Secrets Store CSI Driver for modern cloud native architectures.
- **(2026)** [Neoteroi/essentials-configuration-keyvault](https://github.com/Neoteroi/essentials-configuration-keyvault) β 1 πππ [COMMUNITY-TOOL] β A curated reference on Neoteroi/essentials-configuration-keyvault for modern cloud native architectures.
- **(2026)** [vcloud-lab.com: Create Azure Key Vault Certificates on Azure Portal and Powershell](https://vcloud-lab.com/entries/microsoft-azure/-create-azure-key-vault-certificates-on-azure-portal-and-powershell) πππ [COMMUNITY-TOOL] β A curated reference on vcloud-lab.com: Create Azure Key Vault Certificates on Azure Portal and Powershell for modern cloud native architectures.
- **(2026)** [conjur.org](https://www.conjur.org) πππ [COMMUNITY-TOOL] β A curated reference on conjur.org for modern cloud native architectures.
- **(2026)** [mehighlow.medium.com: Hardened-AKS/Secrets](https://mehighlow.medium.com/hardened-aks-secrets-82351c43eac4) πππ [COMMUNITY-TOOL] β A curated reference on mehighlow.medium.com: Hardened-AKS/Secrets for modern cloud native architectures.
- **(2026)** [Kapitan](https://kapitan.dev) πππ [COMMUNITY-TOOL] β A curated reference on Kapitan for modern cloud native architectures.
- **(2026)** [medium: Declarative secret management for GitOps with Kapitan](https://medium.com/kapitan-blog/declarative-secret-management-for-gitops-with-kapitan-b3c596eab088) πππ [COMMUNITY-TOOL] β A curated reference on medium: Declarative secret management for GitOps with Kapitan for modern cloud native architectures.
- **(2026)** [dzone: Managing Secrets Deployment in GitOps Workflow π](https://dzone.com/articles/managing-kubernetes-secrets) πππ [COMMUNITY-TOOL] β A curated reference on dzone: Managing Secrets Deployment in GitOps Workflow π for modern cloud native architectures.
- **(2026)** [blog.container-solutions.com: The Birth of the External Secrets Community](https://blog.container-solutions.com/the-birth-of-the-external-secrets-community) πππ [COMMUNITY-TOOL] β A curated reference on blog.container-solutions.com: The Birth of the External Secrets Community for modern cloud native architectures.
- **(2026)** [jx-secret-postrenderer π](https://github.com/jenkins-x-plugins/jx-secret-postrenderer) β 4 πππ [COMMUNITY-TOOL] β A curated reference on jx-secret-postrenderer π for modern cloud native architectures.
- **(2026)** [K8s Vault Webhook π](https://ot-container-kit.github.io/k8s-vault-webhook) πππ [COMMUNITY-TOOL] β A curated reference on K8s Vault Webhook π for modern cloud native architectures.
- **(2026)** [portworx.com: Implementing Data Security on Red Hat OpenShift π](https://portworx.com/implementing-data-security-on-red-hat-openshift) πππ [COMMUNITY-TOOL] β A curated reference on portworx.com: Implementing Data Security on Red Hat OpenShift π for modern cloud native architectures.
- **(2026)** [thenewstack.io: Walkthrough: Bitwardenβs New Secrets Manager](https://thenewstack.io/walkthrough-bitwardens-new-secrets-manager) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Walkthrough: Bitwardenβs New Secrets Manager for modern cloud native architectures.
- **(2026)** [morey.tech: Bitwarden and External Secrets](https://morey.tech/technical%20blog/Bitwarden-And-External-Secrets) πππ [COMMUNITY-TOOL] β A curated reference on morey.tech: Bitwarden and External Secrets for modern cloud native architectures.
- **(2026)** [thehackernews.com: Docker Images Containing Cryptojacking Malware Distributed via Docker Hub](https://thehackernews.com/2020/06/cryptocurrency-docker-image.html) πππ [COMMUNITY-TOOL] β A curated reference on thehackernews.com: Docker Images Containing Cryptojacking Malware Distributed via Docker Hub for modern cloud native architectures.
- **(2026)** [medium: KubeSecOps Pipeline(Container security) in a cloudnative ecosystem](https://medium.com/@vaib16dec/kubesecops-pipeline-container-security-in-a-cloudnative-ecosystem-e59bf19a713d) πππ [COMMUNITY-TOOL] β A curated reference on medium: KubeSecOps Pipeline(Container security) in a cloudnative ecosystem for modern cloud native architectures.
- **(2026)** [docs.microsoft.com: Introduction to Azure Defender for container registries](https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-container-registries-introduction) πππ [COMMUNITY-TOOL] β A curated reference on docs.microsoft.com: Introduction to Azure Defender for container registries for modern cloud native architectures.
- **(2026)** [techbeacon.com: 17 open-source container security tools π](https://techbeacon.com/security/17-open-source-container-security-tools) πππ [COMMUNITY-TOOL] β A curated reference on techbeacon.com: 17 open-source container security tools π for modern cloud native architectures.
- **(2026)** [GoogleContainerTools/container-structure-test](https://github.com/GoogleContainerTools/container-structure-test) β 2484 πππ [COMMUNITY-TOOL] β A curated reference on GoogleContainerTools/container-structure-test for modern cloud native architectures.
- **(2026)** [opensource.com: Sign and verify container images with this open source tool (sigstore)](https://opensource.com/article/21/12/sigstore-container-images) πππ [COMMUNITY-TOOL] β A curated reference on opensource.com: Sign and verify container images with this open source tool (sigstore) for modern cloud native architectures.
- **(2026)** [dzone: A Practical Guide for Container Security](https://dzone.com/articles/a-practical-guide-for-container-security) πππ [COMMUNITY-TOOL] β A curated reference on dzone: A Practical Guide for Container Security for modern cloud native architectures.
- **(2026)** [octetz.com: Setting Up Pod Security Policies](https://octetz.com/docs/2018/2018-12-07-psp) πππ [COMMUNITY-TOOL] β A curated reference on octetz.com: Setting Up Pod Security Policies for modern cloud native architectures.
- **(2026)** [medium.com: K8s Network Policies Demystified and Simplified π](https://medium.com/swlh/k8s-network-policies-demystified-and-simplified-18f5ea9848e2) πππ [COMMUNITY-TOOL] β A curated reference on medium.com: K8s Network Policies Demystified and Simplified π for modern cloud native architectures.
- **(2026)** [DevSecOps β Static Analysis SAST with Jenkins Pipeline](https://digitalvarys.com/devsecops-static-analysis-sast-with-jenkins-pipeline) πππ [COMMUNITY-TOOL] β A curated reference on DevSecOps β Static Analysis SAST with Jenkins Pipeline for modern cloud native architectures.
- **(2026)** [Pomerium](https://github.com/pomerium/pomerium) β 4850 πππ [ENTERPRISE-STABLE] β A curated reference on Pomerium for modern cloud native architectures.
- **(2026)** [fluentbit.io](https://fluentbit.io) πππ [COMMUNITY-TOOL] β A curated reference on fluentbit.io for modern cloud native architectures.
- **(2026)** [kubearmor.io](https://kubearmor.io) πππ [COMMUNITY-TOOL] β A curated reference on kubearmor.io for modern cloud native architectures.
- **(2026)** [medium: Whoβs at the Helm?](https://dlorenc.medium.com/whos-at-the-helm-1101c37bf0f1) πππ [COMMUNITY-TOOL] β A curated reference on medium: Whoβs at the Helm? for modern cloud native architectures.
- **(2026)** [itnext.io: Helm 3 β Secrets management, an alternative approach π](https://itnext.io/helm-3-secrets-management-4f23041f05c3) πππ [COMMUNITY-TOOL] β A curated reference on itnext.io: Helm 3 β Secrets management, an alternative approach π for modern cloud native architectures.
- **(2026)** [itnext.io: Manage Auto-generated Secrets In Your Helm Charts π](https://itnext.io/manage-auto-generated-secrets-in-your-helm-charts-5aee48ba6918) πππ [COMMUNITY-TOOL] β A curated reference on itnext.io: Manage Auto-generated Secrets In Your Helm Charts π for modern cloud native architectures.
- **(2026)** [dev-vibe.medium.com: Encrypt Helm sensitive data](https://dev-vibe.medium.com/encrypt-helm-sensitive-data-9d7622e41d00) πππ [COMMUNITY-TOOL] β A curated reference on dev-vibe.medium.com: Encrypt Helm sensitive data for modern cloud native architectures.
- **(2026)** [hashcat](https://hashcat.net/hashcat) πππ [COMMUNITY-TOOL] β A curated reference on hashcat for modern cloud native architectures.
- **(2026)** [devops.com: How to Automate PKI for DevOps With Open Source Tools](https://devops.com/how-to-automate-pki-for-devops-with-open-source-tools) πππ [COMMUNITY-TOOL] β A curated reference on devops.com: How to Automate PKI for DevOps With Open Source Tools for modern cloud native architectures.
- **(2026)** [cybersecsi/HOUDINI: Hundreds of Offensive and Useful Docker Images for' Network Intrusion](https://github.com/cybersecsi/HOUDINI) β 1253 πππ [COMMUNITY-TOOL] β A curated reference on ==cybersecsi/HOUDINI: Hundreds of Offensive and Useful Docker Images for' Network Intrusion== for modern cloud native architectures.
- **(2026)** [itnext.io: Top 6 Threat Detection Tools for Containers](https://itnext.io/top-6-threat-detection-tools-for-containers-3dd80b77777e) πππ [COMMUNITY-TOOL] β A curated reference on itnext.io: Top 6 Threat Detection Tools for Containers for modern cloud native architectures.
- **(2026)** [thenewstack.io: AWS Open Sources Security Tools](https://thenewstack.io/aws-open-sources-security-tools) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: AWS Open Sources Security Tools for modern cloud native architectures.
- **(2026)** [pkg.go.dev/knative.dev/security-guard](https://pkg.go.dev/knative.dev/security-guard) πππ [COMMUNITY-TOOL] β A curated reference on pkg.go.dev/knative.dev/security-guard for modern cloud native architectures.
- **(2026)** [developer.ibm.com: Secure microservices by monitoring behavior](https://developer.ibm.com/technologies/containers) πππ [COMMUNITY-TOOL] β A curated reference on developer.ibm.com: Secure microservices by monitoring behavior for modern cloud native architectures.
- **(2026)** [Microservices Security in Action](https://medium.facilelogin.com/microservices-security-in-action-933072043ad7) πππ [COMMUNITY-TOOL] β A curated reference on Microservices Security in Action for modern cloud native architectures.
- **(2026)** [github.com/aws-samples: Apache Log4j2 CVE-2021-44228 node agent](https://github.com/aws-samples/kubernetes-log4j-cve-2021-44228-node-agent) β 2 πππ [COMMUNITY-TOOL] β A curated reference on github.com/aws-samples: Apache Log4j2 CVE-2021-44228 node agent for modern cloud native architectures.
- **(2026)** [proferosec/log4jScanner](https://github.com/proferosec/log4jScanner) β 489 πππ [COMMUNITY-TOOL] β A curated reference on proferosec/log4jScanner for modern cloud native architectures.
- **(2026)** [Apache Log4j Security Vulnerabilities](https://logging.apache.org/security.html) πππ [COMMUNITY-TOOL] β A curated reference on Apache Log4j Security Vulnerabilities for modern cloud native architectures.
- **(2026)** [edition.cnn.com: The Log4j security flaw could impact the entire internet. Here's what you should know](https://edition.cnn.com/2021/12/15/tech/log4j-vulnerability/index.html) πππ [COMMUNITY-TOOL] β A curated reference on edition.cnn.com: The Log4j security flaw could impact the entire internet. Here's what you should know for modern cloud native architectures.
- **(2026)** [yahoo/check-log4j](https://github.com/yahoo/check-log4j) β 169 πππ [COMMUNITY-TOOL] β A curated reference on yahoo/check-log4j for modern cloud native architectures.
- **(2026)** [dynatrace.com: Log4Shell vulnerability](https://www.dynatrace.com/news/tag/log4shell) πππ [COMMUNITY-TOOL] β A curated reference on dynatrace.com: Log4Shell vulnerability for modern cloud native architectures.
- **(2026)** [Maelstromage/Log4jSherlock](https://github.com/Maelstromage/Log4jSherlock) β 108 πππ [COMMUNITY-TOOL] β A curated reference on Maelstromage/Log4jSherlock for modern cloud native architectures.
- **(2026)** [blog.mimacom.com: A Summary of log4j Exploit in a Log4shell - What Happened and What You Can Do About It](https://blog.mimacom.com/log4j-in-a-log4shell) πππ [COMMUNITY-TOOL] β A curated reference on blog.mimacom.com: A Summary of log4j Exploit in a Log4shell - What Happened and What You Can Do About It for modern cloud native architectures.
- **(2026)** [cyberscoop.com: The Log4j flaw is the latest reminder that quick security fixes are easier said than done](https://cyberscoop.com/log4j-hack-security-update-ransomware) πππ [COMMUNITY-TOOL] β A curated reference on cyberscoop.com: The Log4j flaw is the latest reminder that quick security fixes are easier said than done for modern cloud native architectures.
- **(2026)** [dynatrace.com: Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability](https://www.dynatrace.com/news/blog/log4shell-vulnerability-discovery-and-mitigation) πππ [COMMUNITY-TOOL] β A curated reference on dynatrace.com: Log4Shell vulnerability discovery and mitigation require automatic and intelligent observability for modern cloud native architectures.
- **(2026)** [thenewstack.io: Yet Another Log4j Security Problem Appears](https://thenewstack.io/yet-another-log4j-security-problem-appears) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: Yet Another Log4j Security Problem Appears for modern cloud native architectures.
- **(2026)** [cisagov/log4j-scanner](https://github.com/cisagov/log4j-scanner) πππ [COMMUNITY-TOOL] β A curated reference on ==cisagov/log4j-scanner== for modern cloud native architectures.
- **(2026)** [venturebeat.com: What Log4Shell teaches us about open source security](https://venturebeat.com/2021/12/18/what-log4shell-teaches-us-about-open-source-security) πππ [COMMUNITY-TOOL] β A curated reference on venturebeat.com: What Log4Shell teaches us about open source security for modern cloud native architectures.
- **(2026)** [google/log4jscanner](https://github.com/google/log4jscanner) β 1563 πππ [COMMUNITY-TOOL] β A curated reference on ==google/log4jscanner== for modern cloud native architectures.
- **(2026)** [thehackernews.com: Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities](https://thehackernews.com/2022/01/microsoft-warns-of-continued-attacks.html) πππ [COMMUNITY-TOOL] β A curated reference on thehackernews.com: Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities for modern cloud native architectures.
- **(2026)** [it.slashdot.org: And the Top Source of Critical Security Threats Is...PowerShell](https://it.slashdot.org/story/21/05/22/041242/and-the-top-source-of-critical-security-threats-ispowershell) πππ [COMMUNITY-TOOL] β A curated reference on it.slashdot.org: And the Top Source of Critical Security Threats Is...PowerShell for modern cloud native architectures.
- **(2026)** [therecord.media: UK government plans to release Nmap scripts for finding vulnerabilities](https://therecord.media/uk-government-plans-to-release-nmap-scripts-for-finding-vulnerabilities) πππ [COMMUNITY-TOOL] β A curated reference on therecord.media: UK government plans to release Nmap scripts for finding vulnerabilities for modern cloud native architectures.
- **(2026)** [thenewstack.io: WAF: Securing Applications at the Edge](https://thenewstack.io/waf-securing-applications-at-the-edge) πππ [COMMUNITY-TOOL] β A curated reference on thenewstack.io: WAF: Securing Applications at the Edge for modern cloud native architectures.
- **(2026)** [sysadminxpert.com: How to do Security Auditing of CentOS System Using Lynis Tool](https://sysadminxpert.com/how-to-do-security-auditing-of-centos-system-using-lynis-tool) πππ [COMMUNITY-TOOL] β A curated reference on sysadminxpert.com: How to do Security Auditing of CentOS System Using Lynis Tool for modern cloud native architectures.
- **(2026)** [tryhackme.com: Metasploit: Introduction](https://tryhackme.com/room/metasploitintro) πππ [COMMUNITY-TOOL] β A curated reference on tryhackme.com: Metasploit: Introduction for modern cloud native architectures.
- **(2026)** [bridgecrew](https://bridgecrew.io) πππ [COMMUNITY-TOOL] β A curated reference on bridgecrew for modern cloud native architectures.
- **(2026)** [bridgecrew.io: Tutorial: Incorporate IaC Security in your CI/CD pipeline with Bridgecrew, Jenkins, and GitHub](https://bridgecrew.io/blog/tutorial-incorporate-iac-security-in-your-ci-cd-pipeline-with-bridgecrew-jenkins-and-github) πππ [COMMUNITY-TOOL] β A curated reference on bridgecrew.io: Tutorial: Incorporate IaC Security in your CI/CD pipeline with Bridgecrew, Jenkins, and GitHub for modern cloud native architectures.
- **(2026)** [socket.dev: Introducing Socket](https://socket.dev/blog/introducing-socket) πππ [COMMUNITY-TOOL] β A curated reference on socket.dev: Introducing Socket for modern cloud native architectures.
- **(2026)** [deepfence/ThreatMapper π](https://github.com/deepfence/ThreatMapper) β 5278 πππ [ENTERPRISE-STABLE] β A curated reference on deepfence/ThreatMapper π for modern cloud native architectures.
- **(2026)** [github.com/goauthentik/authentik](https://github.com/goauthentik/authentik) β 21988 πππ [DE FACTO STANDARD] β A curated reference on github.com/goauthentik/authentik for modern cloud native architectures.
- **(2026)** [github.com/openappsec/openappsec](https://github.com/openappsec/openappsec) β 1635 πππ [COMMUNITY-TOOL] β A curated reference on github.com/openappsec/openappsec for modern cloud native architectures.
- **(2026)** [github.com/prowler-cloud/prowler ππ](https://github.com/prowler-cloud/prowler) β 13994 πππ [ENTERPRISE-STABLE] β A curated reference on ==github.com/prowler-cloud/prowler== ππ for modern cloud native architectures.
- **(2026)** [grype: a vulnerability scanner for container images and filesystems](https://github.com/anchore/grype) β 12400 πππ [ENTERPRISE-STABLE] β A curated reference on grype: a vulnerability scanner for container images and filesystems for modern cloud native architectures.
---
π‘ **Explore Related:** [Chef](./chef.md) | [IaC](./iac.md) | [Crossplane](./crossplane.md)