Dates
Conferences
Tags
Sort by:
Most recent
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Carlos Panato, Adolfo García Veytia, Stephen Augustus
2022-05-18
tldr - powered by Generative AI
The SIG Release team of Kubernetes is working on releasing the software less often and more securely. They have changed the release cadence to three releases per year and introduced fast forward in the last cycle. They are also working on making the software supply chain more secure by driving towards full SLSA compliance.
- SIG Release is responsible for the release of Kubernetes and all the tooling around release engineering.
- The team has changed the release cadence to three releases per year to make it more sustainable.
- Fast forward was introduced in the last cycle to avoid conflicts during cherry picking.
- The team is working on making the software supply chain more secure by driving towards full SLSA compliance.
- They are also working on creating a roadmap and vision for SIG Release.
- Maintainers of other projects under the Kubernetes organization are encouraged to attend the session to learn more about extending the SIG Release tools to their own releases.
Conference: OWASP 20th Anniversary Event
Authors: Simon Bennetts
2021-09-24
tldr - powered by Generative AI
The upcoming release of OWASP ZAP 2.11.0 introduces several new features, including an automation framework, out-of-band security testing, and improved reporting capabilities.
- OWASP ZAP is a web scanner tool designed to find vulnerabilities in custom web applications.
- The new automation framework simplifies the process of configuring and running scans.
- Out-of-band security testing allows for the detection of vulnerabilities that may not be immediately apparent.
- Improved reporting capabilities provide more detailed information about vulnerabilities and site statistics.
- The package scans and API are still available, but the automation framework provides a more user-friendly option for those less familiar with driving Zap through the API.