BREAKING — Red Hat will combine Kubernetes safety application into its OpenShift platform with the acquisition of StackRox.
Red Hat plans to open source StackRox’s proprietary source code, with timing to be established later on, according to a push release. StackRox launched KubeLinter, an open source task that analyzes Kubernetes YAML files and Helm charts to make certain correct configurations, in October.
Conditions of the acquisition weren’t disclosed. Red Hat expects to complete it this quarter.
Container safety, where StackRox received its begin in 2014, has introduced or enabled new IT safety tactics in general, from compliance as code to DevSecOps. Containers lend by themselves to immutable or repeatable infrastructure deployment styles, which are viewed as much more safe mainly because they are not inclined to faults in updates and patching — in the circumstance of immutable infrastructure — or human mistake in the circumstance of automated repeatable deployments, notably when IT professionals use them as aspect of a GitOps method.
Kubernetes safety in unique has been at the heart of discussions amid enterprises with the container orchestration platform in creation more than the past 6 months, notably in conditions of no matter whether upstream defaults must be replaced with 3rd-party professional jobs. Some upstream Kubernetes safety components, this sort of as Pod Stability Procedures, have languished and will be deprecated in favor of new strategies, the group resolved past thirty day period.
StackRox and rivals this sort of as NeuVector pivoted from a container safety concentrate in 2018 to a Kubernetes-unique one. StackRox was amid the 1st to deploy its application for container runtime safety as a privileged DaemonSet inside of Kubernetes infrastructure.
This signifies StackRox application can be immediately and constantly injected into each Kubernetes cluster as it truly is deployed. That was a selling point for early adopters this sort of as retail application maker Aptos, video clip streaming startup Mux Inc. and fintech firm Greenlight.
StackRox also features container safety scanning inside of CI/CD pipelines for DevSecOps deployments, an method favored by enterprise shoppers this sort of as Informatica.
StackRox will continue on to assist a number of Kubernetes items, including Amazon EKS, Microsoft Azure Kubernetes Company and Google Kubernetes Engine, and would not be constrained just to OpenShift shoppers.
Existing StackRox shoppers will continue on to acquire assist from StackRox till the acquisition closes, and then will be shifted to Red Hat assist, according to a firm FAQ.
Reporting in development — total tale to abide by.