Cert-Manager Now Part of The CNCF Sandbox Family as Jetstack Completes Donation

TL;DR

Cloud native infrastructure builder Jetstack announces its successful donation of the cert-manager project to the Linux Foundation’s Cloud Native Computing Foundation as a “sandbox” project. The donation has been eagerly accepted, and cert-manager is expected to revolutionize the security offered to the Kubernetes community, specifically in the domain of certificate management.

The new cert-manager API makes it more mature and powerful
The new cert-manager API makes it more mature and powerful
Key Facts
  1. 1

    Jetstack’s cert-manager is a state-of-the-art Kubernetes certificate management controller. It is used to manage X.509 machine identities in OpenShift and Kubernetes.

  2. 2

    Jetstack’s decision to donate cert-manager stems from their belief that technology like cert-manager can be better-utilized and more effective when managed and operated by a vendor-neutral party like the CNFC.

  3. 3

    CNFC provides Kubernetes and open source support to a variety of organizations, non-profits, government agencies, and academic institutions worldwide. This makes the cert-manager donation especially useful in preserving the security of vast arrays of projects built by the community.

  4. 4

    Cert-manager supports the entire certificate lifecycle and enables the signing of certificates by public and private signatories/authorities such as Let’s Encrypt.

  5. 5

    Cert-manager has been built and grown by a dedicated team of Jetstack’s top engineers and over 260+ highly-experienced developers and engineers.

Details

Jetstack is mainly a Kubernetes professional services company founded in 2015 and recently acquired by Venafi, a security company specialized in different areas mainly machine identity. According to the Venafi:

The combination of speed and security creates an interesting dilemma. How do you build software quick enough to compete, without the risk of being exploited? This is the challenge that Jetstack and Venafi will solve.

Back to cert-manager, Jetstack recently announced the release of the v1 API for this tool, which made the technology more mature and powerful. This release allows developers to have greater visibility and control over their certificates.

Currently, the Venafi+Jetsack team has been working towards integrating Google's new Certificate Authority Service (CAS) with cert-manager. This will offer developers private CA keys as a service, using HSMs, which are validated at FIPS 140-2 Level 3.

It’s exciting to see cert-manager join the CNCF Sandbox. It’s been several years in the making to get to 1.0, and we’re hugely thankful to a community of over 250 contributors, and many end-users, to get it to where it is today. This is a foundational add-on to many Kubernetes and OpenShift clusters, and the project will benefit from being part of the CNCF and its ecosystem. We look forward to attracting a diverse contributor base and extending our partnership and cooperation with many other projects to further enhance the developer and operator experience.
avatar
Matthew Bates
Co-founder and CTO, Jetstack

Get similar sotries in your inbox weekly, for free

Is this news interesting? Share it with your followers
AllEbooksFBADSquare.png
Learn Cloud Native Technologies

Learn by doing. Check our discounts!

DevOps-and-Alt-Cloud-350x350.png
DevOps and the Alternative Cloud Research Report

Insights into the capabilities developers expect from cloud infrastructure providers

The DevOps FaunCast.png
Listen to the stories behind the stories and learn new things each week

The DevOps FAUNCast

linode2.jpg
The Cloud Computing Golden Ratio

Discover the golden ratio of price to performance

FAUN.png
The all-in-one cloud security platform for developers

Try Bridgecrew for free!

Content Marketing Platform for Cloud Native Companies
Sponsor The Chief I/O

Get in touch!

AllEbooksFBADSquare.png

Learn Cloud Native Technologies
Learn by doing. Check our discounts!

DevOps-and-Alt-Cloud-350x350.png

DevOps and the Alternative Cloud Research Report
Insights into the capabilities developers expect from cloud infrastructure providers

The DevOps FaunCast.png

Listen to the stories behind the stories and learn new things each week
The DevOps FAUNCast

linode2.jpg

The Cloud Computing Golden Ratio
Discover the golden ratio of price to performance

FAUN.png

The all-in-one cloud security platform for developers
Try Bridgecrew for free!

Content Marketing Platform for Cloud Native Companies

Sponsor The Chief I/O
Get in touch!

Top news this week
Misconfigurations have been around for as long as computing itself.

Kubernetes: Malicious Actors Exploiting Misconfigured Argo Workflows

They also targeted entities hosting on-premises mail servers using various protocols.

Cyber Espionage Group Adopting Brute-Force Tactics With Kubernetes Clusters

The release marks the fruition of development efforts over a while.

AWS Launches OpenSearch Into General Availability: OpenSearch 1.0

The infamous erroneous handling of invalid nghttp2 frames has also been fixed.

New Version of Envoy With Minor Modifications

The service demands no upfront payment; they only have to account for the capacity used.

AWS Strengthens Its Cloud-Based Storage Offering

They have always been the Achilles heel of security-fortified systems.

Researchers Raise the Alarm on the Linux Cryptojacking Campaign

OpenAI Codex has a superior understanding of popular coding methods.

Github Copilot: Microsoft's Advanced Investment in Automatic Coding

Free guides & whitepapers
CFX BG.jpg

Leading Healthcare Provider in the US gets real-time visibility with CloudFabrix AIOps 2.0

Istio - This is what you need to know

Istio - This is what you need to know

Kubernetes 101

Kubernetes 101

The Guide To Kubernetes

Kubernetes For The Busy Developer