 
                                ADA Logics
@adalogics
Advanced Software Security. Vulnerability analysis, software auditing and security automation. adalogics.com/contact
ID: 1056290751993262085
https://adalogics.com 27-10-2018 21:05:14
335 Tweet
362 Takipçi
2 Takip Edilen
 
         
         
         
         
         
         
         
         
         
         
         
        The Kyverno project collaborated with ADA Logics OSTIF Official and CNCF to complete a comprehensive 3rd party security audit, and fix all issues found during the audit. cncf.io/blog/2023/12/0… #Kubernetes #Security
 
        Security audit of Kyverno: CNCF Policy Engine -- details in the report. Holistic audit including #SLSA supply chain security assessment, #fuzzing by way of OSS-Fuzz, code review, threat modelling and more. Kudos to AdamKorcz for leading and thanks to Kyverno: CNCF Policy Engine OSTIF Official CNCF
 
        Get the lowdown on Kyverno: CNCF Policy Engine's security audit by ADA Logics with support from CNCF and yours truly at ostif.org/kyverno-audit-…. What can we say, the work speaks for itself- but you gotta read to get the details!
 
                        
                    
                    
                    
                 
        Holistic security audit of Kyverno: CNCF Policy Engine : Supply Chain Security with #SLSA, #Fuzzing with OSS-Fuzz, Manual code review and Threat modelling! Full details in the report. Great collaboration with Kyverno: CNCF Policy Engine maintainers, OSTIF Official and CNCF
 
         
        KnativeProject security audit -- Verifiable provenance with #SLSA , #fuzzing with OSS-Fuzz and manual code auditing. Several interesting findings with full details in the accompanying report. Thanks to OSTIF Official and CNCF for the collaboration.
 
        With ADA Logics and CNCF, OSTIF completed a security audit of KnativeProject- such a great engagement, well done to everyone! Find out what we're talking about at ostif.org/knative-audit-…
 
                        
                    
                    
                    
                 
        Our first audit in collaboration with Sovereign Tech Fund's Bug Resilience Program is now published! 5 Jackson subprojects underwent holistic security work via this engagement, with auditing by ADA Logics. Read more at ostif.org/dataformatsdat…
 
                        
                    
                    
                    
                 
        Happy to announce our #fuzzing work on #LLVM focused on continuous fuzzing by way of OSS-Fuzz -- LLVM is now the project with most lines covered of all OSS-Fuzz projects! Thanks to collaborators OSTIF Official and Sovereign Tech Fund Full report is available in adalogics.com/blog/llvm-fuzz…
 
         
                        ![CNCF (@cloudnativefdn) on Twitter photo [NEWS from #KubeCon] CNCF fuzzing open source projects for security and reliability 
cncf.io/blog/2023/04/1… [NEWS from #KubeCon] CNCF fuzzing open source projects for security and reliability 
cncf.io/blog/2023/04/1…](https://pbs.twimg.com/media/Ft-2DRZWAAA5_0X.jpg) 
                         
                        ![CNCF (@cloudnativefdn) on Twitter photo [NEWS FROM #KUBECON] Learn about updates to #CNCF Fuzzing practices for 2023!
Fuzzing is crucial for ensuring secure and reliable software 🔒 
Recent updates include a new Fuzzing Handbook + 3 recent audits for #Dapr, #Kyverno + #Knative!
Read more: cncf.io/blog/2023/11/0… [NEWS FROM #KUBECON] Learn about updates to #CNCF Fuzzing practices for 2023!
Fuzzing is crucial for ensuring secure and reliable software 🔒 
Recent updates include a new Fuzzing Handbook + 3 recent audits for #Dapr, #Kyverno + #Knative!
Read more: cncf.io/blog/2023/11/0…](https://pbs.twimg.com/media/F-VwBefbkAEAHSO.png)