#Cedar - an #opensource authorisation policy language and SDK - has officially joined #CNCF as a Sandbox project!

It aims to provide a vendor-neutral standard for defining and enforcing fine-grained permissions in modern applications.

Details here 👉 bit.ly/4bx7c23

#DevOps #PolicyAsCode #InfoQ

Security should be the reason you can drive development at 100mph Security should not slow your business (unless you need to go around a corner), we should make high speed business possible. Throughout my career—from my time reviewing bank security to leading global...

Some thoughts about security and automation. I'm probably going to turn this into a presentation for #NolaSec soon.

#PolicyAsCode #SecureByDesign #DevSecOps #Resilience #InformationSecurity #Cybersecurity

AI governance needs the same rigor as model development.
Policy-as-Code enforces rules inside data & annotation workflows, catch issues early, apply standards consistently, and make compliance part of daily work.

Read more: imerit.net/resources/bl...

#PolicyAsCode #AIGovernance #modeldevelopment

Trustworthy AI Agents: Kill Switches and Circuit Breakers Why autonomous agents need hard limits, circuit breakers, and emergency stop mechanisms to prevent runaway execution and cascading failures.

New post in our Trustworthy AI series: Kill switches and circuit breakers for agent workloads.

How to halt agents, block runaway loops, and enforce runtime safety.

Read: www.sakurasky.com/blog/missing...

#AIEngineering #AgentSecurity #CloudSecurity #PolicyAsCode #SakuraSky

Mondoo’s Policy-as-Code uses an intuitive YAML/MQL format with over 300 out-of-the-box policies and frameworks. Define, version, test, and deploy security and compliance controls across your infrastructure and CI/CD pipeline, consistently and efficiently.

#PolicyAsCode #InfrastructureAsCode

Policy-as-Code Enforcement Guardrails must be enforced at runtime, not left as developer best practices. Just like infrastructure-as-code, compliance must be baked into execution.

New blog in our Trustworthy AI series: Policy-as-Code for AI agents.

Real-time enforcement, OPA + Rego, and practical runtime governance.

Short Python example included.

www.sakurasky.com/blog/missing...

#AIEngineering #AIGovernance #PolicyAsCode #TrustworthyAI #DevSecOps

Zero CVEs ≠ Zero Risk.

Misconfigurations & leaked secrets can take down an image faster than any exploit.

Anchore helps teams catch both.

By @JoshSopuru → anchore.com/blog/beyond-the-cve-deep...

#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain

Policy failure—not zero-days—is the real weak link.

Anchore enforces what "secure" means before bad configs & secrets ever ship.

Read @JoshSopuru's Beyond t... anchore.com/blog/beyond-the-cve-deep...

#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain

Relying on CVE scans alone is like putting a padlock on a vault with the back door open.

Anchore goes beyond the CVE to secure configs, secrets &... @JoshSopuru anchore.com/blog/beyond-the-cve-deep...

#SBOM #ContainerSecurity #PolicyAsCode #SoftwareSupplyChain

Inside the Tab Browser Detection and Response — an EDR inside the browser

Inside the Tab

Read more: buff.ly/zeoOJZz

@TechFieldDay.com #SquareX #XFD14 #Cybersecurity #EDR #ThreatPrevention #PolicyAsCode

How would your security strategy change if every browser tab could see and stop threats in real time, right where users interact with the web?

Learn more about SquareX and what they offer from Security Field Day.

#XFD14 #Cybersecurity #EDR #ThreatPrevention #PolicyAsCode

KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: KyvernoCon This is the very first KyvernoCon! While Kyverno has been part of the CNCF since November 2020, and has had a strong presence at past KubeCon events through policy as code focused talks…

KyvernoCon is here! 🎉
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.

Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.

🛠️ Join us → www.cncf.io/blog/2025/09...

#Kyverno #CNCF #CloudNative

JSON-based policies + Git integration = Compliance workflows that actually work with DevOps 🔧

https://anchore.com/platform/enforce/

#PolicyAsCode #DevSecOps #Compliance

How to implement Policy as Code for a more secure SDLC | ReversingLabs Policy as Code is emerging as a key area of focus for application security teams in the age of cloud-native software development. But implementation can be daunting.

✍️ #PolicyAsCode #PaC is emerging as a key area of focus for #AppSec in the age of cloud-native software development, but putting it into practice remains a challenge.👇 www.reversinglabs.com/blog/policy-...

Kubernetes Policy as Code: The Foundation of Modern Cluster Governance Policy enforcement in K8s, first enabled in the 1.8 release with the introduction of admission webhooks, now underpins just about everything in Kubernetes.

Kubernetes #PolicyasCode is essential for #cluster #governance. Automate security, compliance, and best practices w/ tools like Kyverno, OPA, + Polaris.
This post by @sudermanjr.bsky.social explores how to simplify policy management for your K8s infrastructure:
www.fairwinds.com/blog/kuberne...

Shift Left with Terraform | Catch Security Bugs Before Deploy YouTube video by DevOps Compass | by Docker Captain

🚨 Security doesn't start in prod — it starts at terraform plan.

With Policy as Code tools like #OPA, #Checkov, #Snyk, and #Sentinel by @hashicorp.com, you can catch misconfigs before they deploy. 🛡️

🎥 youtube.com/shorts/C-2OJ...

#Terraform #HashiCorp #DevSecOps #PolicyAsCode

10/🧵 What's your biggest tagging nightmare? Consistency? Enforcement? Getting teams onboard? Share below! 👇 Next week: Building killer dashboards to visualize all this glorious tagged data!
#CloudGovernance #PolicyAsCode #FinOpsJourney

CIS ✅ STIG ✅ FedRAMP ✅ NIST ✅

Anchore Enforce comes with pre-built policy packs for major compliance standards. No translat... anchore.com/blog/automate-your-compl...

#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode

Developers: Stop getting surprised by compliance issues at the end of your build. Anchore Enforce gives you immediate policy ... anchore.com/blog/automate-your-compl...

#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode

Software supply chain attacks ⬆️ 540% since 2019. Your solution? Automated policy enforcement.

See how Anchore Enforce help... anchore.com/blog/automate-your-compl...

#SoftwareSupplyChain #Compliance #ContainerSecurity #PolicyAsCode

Before Policy-as-Code: Arcane compliance docs, 11th-hour shipping delays 😩

After Policy-as-Code: Automated and immediate feedback without leaving your terminal ✨

See how: anchore.com/blog/sbom-and-policy-as-...

#DevSecOps #SBOM #PolicyAsCode #SoftwareSupplyChain

Every context switch costs you productivity.

Learn how SBOMs & Policy-as-Code eliminate friction between development velocity and compliance requirements.

Read our developer... anchore.com/blog/sbom-and-policy-as-...

#DevSecOps #SBOM #PolicyAsCode #SoftwareSupplyChain

🚀 The wait is over—Kubewarden 1.23 is here! Packed with security enhancements, smoother workflows, and key updates to elevate your Kubernetes experience. Dive into what's new: www.kubewarden.io/blog/2025/03... 🌟 #Kubernetes #DevSecOps #Security #PolicyAsCode

Tired of switching from coding to compliance?

Learn how SBOMs & Policy-as-Code automate policy checks in your workflow so you can spend less time in meetings and more time in your terminal.

Read... anchore.com/blog/sbom-and-policy-as-...

#DevSecOps #SBOM #PolicyAsCode

Can’t Miss Keynotes & Tech Talks at KubeCon Europe 2025 KubeCon + CloudNativeCon Europe 2025 is just around the corner! Once again, I’m excited to meet up again at this event dedicated to cloud native computing.

Can’t believe #KubeCon + #CloudNativeCon #Europe 2025 is just around the corner! Join @sudermanjr.bsky.social there, where he'll be speaking in a session about #Kubernetes #PolicyasCode (PaC). Check out this guide on what to expect & what he's excited to attend:
www.fairwinds.com/blog/cant-mi...

👉dans La tech est politique de la semaine, j'ai parlé #PCLOB et #DPF : ça bouillonne et faut se mettre en ordre de marche.

👉je parle #PolicyAsCode et de transformation culturelle avec DORA cet après-midi à nos amis British grâce à FinTech Futures.
7/9

Searching for ways to improve your cloud-native operations with cutting-edge strategies? 🙋‍♂️

Learn how #GitOps and #PolicyAsCode (#PaC) can revolutionize your organization by streamlining operations & ensuring security and compliance. 🔐

🔗 https://buff.ly/4h2qIU5

#DevOps #CloudNative #Kyverno

Policy as Code | From Infrastructure to Fine-Grained Authorization Learn about Policy as Code, its use cases, and challenges from leading software developers. Discover tools and frameworks for policy as code implementation, and dive into policy languages like Rego, C...

#PolicyAsCode | From Infrastructure to Fine-Grained Authorization