Safeguard
Tag

kubernetes-security

Safeguard articles tagged "kubernetes-security" — guides, analysis, and best practices for software supply chain and application security.

125 articles

Container Security

How to secure Kubernetes secrets and sensitive data

Kubernetes secrets are base64, not encrypted, by default. Here's how they actually leak, where Prisma Cloud's CNAPP approach falls short, and how to fix rotation, RBAC, and encryption gaps.

Apr 9, 20267 min read
Container Security

What is Container Security? (definition, lifecycle, threats)

Container security spans build, ship, and runtime: scanning, SBOMs, Kubernetes hardening, and runtime detection. How it works, and where Anchore leaves gaps.

Mar 28, 20268 min read
Container Security

Kubernetes vulnerability scanning and audit-ready compliance

Image scans can pass while your Kubernetes control plane stays exposed. See why CVE-2025-1974 and CIS Benchmark gaps break audits — and how to close them.

Mar 27, 20267 min read
Container Security

What is Container Security

Container security protects images, runtimes, orchestration, and hosts. Here's what it covers, why 87% of images ship with critical CVEs, and how to fix it.

Mar 22, 20267 min read
Container Security

3 Steps to Secure Container Images

A stock base image ships 180+ unused packages. Learn the 3 steps to secure container images: minimize, prioritize by reachability, and enforce.

Mar 21, 20267 min read
Container Security

What is Container Runtime Security

Container runtime security monitors running containers for malicious behavior that image scanning can't catch — here's how it works and why it matters.

Mar 21, 20267 min read
Container Security

What is Container Orchestration

Container orchestration automates how containers deploy, scale, and recover across clusters — and it's also one of the highest-value targets in the software supply chain.

Mar 21, 20266 min read
Container Security

What is Container Monitoring

Container monitoring tracks metrics, logs, and runtime behavior across ephemeral containers—here's what it covers, why it matters, and how it differs from VM monitoring.

Mar 20, 20267 min read
Container Security

What is Kubernetes Security

Kubernetes security spans four layers — cloud, cluster, container, code — and misconfiguration, not novel exploits, causes most real-world incidents.

Mar 19, 20268 min read
Container Security

Kubernetes Monitoring Guide

A practical Kubernetes monitoring guide: what to track across nodes, control plane, and workloads, the tools teams use, and where monitoring alone misses supply chain risk.

Mar 19, 20266 min read
Container Security

What is Kubernetes RBAC

Kubernetes RBAC controls who can do what in your cluster. Here's how Roles, Bindings, and ClusterRoles work — and where they commonly fail.

Mar 19, 20266 min read
Container Security

What Are Kubernetes Network Policies

Kubernetes clusters default to flat, all-to-all pod networking. Here's how NetworkPolicy objects, CNI enforcement, and default-deny rules actually stop lateral movement.

Mar 19, 20267 min read
kubernetes-security (Page 5) — Safeguard Blog