56 0

The Cloud Native Computing Foundation (CNCF) today announced its first bug bounty program for Kubernetes, the ubiquitous container orchestration system originally built by Google . To run this program, the CNCF is partnering with Google and HackerOne and bounties will range from $100 to $10,000. Kubernetes already has a Product Security Committee that includes engineers from Google’s own Kubernetes security team and there are obviously plenty of eyes on the code. A bounty program, however, will get more (and new) security researchers to examine the code and help reward those who are already doing this work. “ Kubernetes already has a robust security team and response process, further ce... Full story

14 January