CNAs, or CVE Numbering Authorities, are an essential part of
vulnerability reporting because they compose a cohort of bug bounty
programs, organizations, and companies involved in the secure
software supply chain.When millions of developers depend on your
projects, like in Docker’s case, it’s important to be a CNA to
reinforce your commitment to cybersecurity and good stewardship as
part of the software supply chain. Previously, Docker reported CVEs
directly through MITRE and GitHub without CNA status (there are
many other organizations that still do this
Docker Hub can now serve as a registry for any type of
application artifact!It can help you distribute WebAssembly
modules, helm charts, Docker Volumes, SBOMs, and more.
November’s been a busy month, and we’ve got three new Docker
Extensions for you to try! Docker Extensions build new
functionality into Docker Desktop, extend its existing
capabilities, and allow you to discover and integrate additional
tools that you’re already using with Docker.Let’s take a look at
some of the latest ones. And if you’d like to see everything
available, check out our full Extensions Marketplace!
Look inside Kubernetes clusters with Calyptia Core
Observability is the practice of understanding the internal
state of a system from its output.It’s based on a trio of key
indicators:logs, metrics, and traces.Because metrics and traces are
numerical, it’s easy to visualize that data through graphics.Logs
are unfortunately text heavy and relatively difficult to visualize
or observe.
No matter the data type and its underlying nature, actionable
log data helps you solve problems and make smarter business
decisions.And that’s where Parseable comes in.
This post was co-written by Kris Rivera, Principal Software
Engineer at Rapid7.
Rapid7 is a Boston-based
provider of security analytics and automation solutions enabling
organizations to implement an active approach to cybersecurity.Over
10,000 customers rely on Rapid7 technology, services, and research
to improve security outcomes and securely advance their
organizations. The security space is constantly changing, with
new threats
arising every day.To
meet their customers’ needs, Rapid7 focuses on increasing the
reliability
