<!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Security - The Crossplane Blog</title> <meta name="HandheldFriendly" content="True" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <link rel="stylesheet" type="text/css" href="/assets/css/style.css?v=a1348d70b3" /> <link rel="icon" href="/favicon.png" type="image/png" /> <link rel="canonical" href="https://blog.crossplane.io/tag/security/" /> <meta name="referrer" content="no-referrer-when-downgrade" /> <meta property="og:site_name" content="The Crossplane Blog" /> <meta property="og:type" content="website" /> <meta property="og:title" content="Security - The Crossplane Blog" /> <meta property="og:description" content="Cross talk about clouds. Dive into the world of cloud, open source, platforms, and Crossplane, the cloud native control plane framework." /> <meta property="og:url" content="https://blog.crossplane.io/tag/security/" /> <meta property="og:image" content="https://blog.crossplane.io/content/images/2019/01/CrossplaneBanner_Blog-03.png" /> <meta name="twitter:card" content="summary_large_image" /> <meta name="twitter:title" content="Security - The Crossplane Blog" /> <meta name="twitter:description" content="Cross talk about clouds. Dive into the world of cloud, open source, platforms, and Crossplane, the cloud native control plane framework." /> <meta name="twitter:url" content="https://blog.crossplane.io/tag/security/" /> <meta name="twitter:image" content="https://blog.crossplane.io/content/images/2019/01/CrossplaneBanner_Blog-03.png" /> <meta name="twitter:site" content="@crossplane_io" /> <meta property="og:image:width" content="3095" /> <meta property="og:image:height" content="584" /> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "Series", "publisher": { "@type": "Organization", "name": "The Crossplane Blog", "url": "https://blog.crossplane.io/", "logo": { "@type": "ImageObject", "url": "https://blog.crossplane.io/content/images/2020/05/CrossplaneLogo_Horiz-WhiteText.png" } }, "url": "https://blog.crossplane.io/tag/security/", "name": "Security", "mainEntityOfPage": { "@type": "WebPage", "@id": "https://blog.crossplane.io/" } } </script> <meta name="generator" content="Ghost 4.2" /> <link rel="alternate" type="application/rss+xml" title="The Crossplane Blog" href="https://blog.crossplane.io/rss/" /> <script defer src="https://unpkg.com/@tryghost/portal@~1.1.0/umd/portal.min.js" data-ghost="https://blog.crossplane.io/"></script><style> .gh-post-upgrade-cta-content, .gh-post-upgrade-cta { display: flex; flex-direction: column; align-items: center; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, Cantarell, 'Open Sans', 'Helvetica Neue', sans-serif; text-align: center; width: 100%; color: #ffffff; font-size: 16px; } .gh-post-upgrade-cta-content { border-radius: 8px; padding: 40px 4vw; } .gh-post-upgrade-cta h2 { color: #ffffff; font-size: 28px; letter-spacing: -0.2px; margin: 0; padding: 0; } .gh-post-upgrade-cta p { margin: 20px 0 0; padding: 0; } .gh-post-upgrade-cta small { font-size: 16px; letter-spacing: -0.2px; } .gh-post-upgrade-cta a { color: #ffffff; cursor: pointer; font-weight: 500; box-shadow: none; text-decoration: underline; } .gh-post-upgrade-cta a:hover { color: #ffffff; opacity: 0.8; box-shadow: none; text-decoration: underline; } .gh-post-upgrade-cta a.gh-btn { display: block; background: #ffffff; text-decoration: none; margin: 28px 0 0; padding: 8px 18px; border-radius: 4px; font-size: 16px; font-weight: 600; } .gh-post-upgrade-cta a.gh-btn:hover { opacity: 0.92; }</style> <style> .site-logo { max-width: 8em; } </style> <!-- Google Tag Manager --> <script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer','GTM-WFF2NQHG');</script> <!-- End Google Tag Manager --><style>:root {--ghost-accent-color: #F3807B;}</style> </head> <body class="tag-template tag-security"> <nav id="menu"> <a class="close-button">Close</a> <div class="nav-wrapper"> <p class="nav-label">Menu</p> <ul> <li class="nav-blog-home" role="presentation"><a href="https://blog.crossplane.io/">Blog Home</a></li> <li class="nav-crossplane-io" role="presentation"><a href="https://crossplane.io/">Crossplane.io</a></li> <li class="nav-subscribe-to-the-newsletter" role="presentation"><a href="https://eepurl.com/ivy4v-/">Subscribe to the Newsletter</a></li> <li class="nav-twitter"><a href="https://twitter.com/crossplane_io" title="@crossplane_io"><i class="ic ic-twitter"></i> Twitter</a></li> <li class="nav-rss"><a href="https://blog.crossplane.io/rss/"><i class="ic ic-rss"></i> Subscribe</a></li> </ul> </div> </nav> <section id="wrapper"> <a class="hidden-close"></a> <header id="blog-header" class="has-cover"> <div class="inner"> <nav id="navigation"> <span class="blog-logo"> <a href="https://blog.crossplane.io"><img src="https://blog.crossplane.io/content/images/2020/05/CrossplaneLogo_Horiz-WhiteText.png" alt="Blog Logo" /></a> </span> <span id="menu-button" class="nav-button"> <a class="menu-button"><i class="ic ic-menu"></i> Menu</a> </span> </nav> <h1 class="blog-name">Security</h1> <span class="blog-description"> Posts: 10 </span> <div class="blog-cover cover" style="background-image: url('/content/images/2019/01/CrossplaneBanner_Blog-03.png');"></div> </div> </header> <div id="index" class="container"> <main class="content" role="main"> <div class="extra-pagination"> <nav class="pagination" role="pagination"> <div class="inner"> <span class="pagination-info">Page 1 of 1</span> <div class="clear"></div> </div> </nav> </div> <article class="post tag-aws tag-azure tag-gcp tag-security"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/enhancing-security-practices-with-crossplane-providers/">Enhancing Security Practices with Crossplane Providers</a></h2> <span class="post-meta"><a href="/author/pete/">Pete Lumbis</a> on <a href="/tag/aws/">AWS</a>, <a href="/tag/azure/">Azure</a>, <a href="/tag/gcp/">GCP</a>, <a href="/tag/security/">Security</a> | <time datetime="2023-10-17">17 Oct 2023</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <img src="/content/images/2023/10/MultiCloud_Plates.png" class="front-page-image" /> <p>The Crossplane docs team walks through every authentication method for AWS, Azure and GCP (Google Cloud) providers to make authentication easier. <a class="read-more" href="/enhancing-security-practices-with-crossplane-providers/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>The Crossplane docs team walks through every authentication method for AWS, Azure and GCP (Google Cloud) providers to make authentication easier.&hellip;</p> </section> --> </div> </article> <article class="post tag-security tag-audit tag-cncf tag-maturity tag-production"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/security-audit-2023/">Crossplane Completes Security Audit - Hardening and Growing Enterprise Confidence</a></h2> <span class="post-meta"><a href="/author/jared/">Jared Watts</a> on <a href="/tag/security/">Security</a>, <a href="/tag/audit/">Audit</a>, <a href="/tag/cncf/">CNCF</a>, <a href="/tag/maturity/">Maturity</a>, <a href="/tag/production/">Production</a> | <time datetime="2023-07-27">27 Jul 2023</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <img src="/content/images/2023/07/crossplane-package-threat-model.png" class="front-page-image" /> <p>We are excited to announce today that the Crossplane security audit is officially complete and the full report and findings are available for the public. <a class="read-more" href="/security-audit-2023/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>We are excited to announce today that the Crossplane security audit is officially complete and the full report and findings are available for the public.&hellip;</p> </section> --> </div> </article> <article class="post tag-release tag-roadmap tag-security tag-maturity tag-audit tag-crossplane"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/crossplane-v1-13/">Announcing Crossplane v1.13 - Security, Quality, and Maturing Key Features</a></h2> <span class="post-meta"><a href="/author/jared/">Jared Watts</a> on <a href="/tag/release/">Release</a>, <a href="/tag/roadmap/">Roadmap</a>, <a href="/tag/security/">Security</a>, <a href="/tag/maturity/">Maturity</a>, <a href="/tag/audit/">Audit</a>, <a href="/tag/crossplane/">Crossplane</a> | <time datetime="2023-07-27">27 Jul 2023</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <img src="/content/images/2023/07/crossplane-greencity.png" class="front-page-image" /> <p>We are happy to announce the release today of Crossplane v1.13, the latest major release of the Crossplane project. This particular milestone focused heavily on security, quality, and investing in key feature areas to push the project forward in its maturity and reliability. <a class="read-more" href="/crossplane-v1-13/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>We are happy to announce the release today of Crossplane v1.13, the latest major release of the Crossplane project. This particular milestone focused heavily on security, quality, and investing in key feature areas to push the project forward in its maturity and reliability.&hellip;</p> </section> --> </div> </article> <article class="post tag-cncf tag-security"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/fuzzing-security-audit/">Crossplane completes fuzzing security audit</a></h2> <span class="post-meta"><a href="/author/adam/">Adam Korczynski</a>, <a href="/author/jared/">Jared Watts</a> on <a href="/tag/cncf/">CNCF</a>, <a href="/tag/security/">Security</a> | <time datetime="2023-03-24">24 Mar 2023</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <img src="/content/images/2023/03/Crossplane-Red-City.svg" class="front-page-image" /> <p>Crossplane is happy to announce the successful completion of our fuzzing security audit. The work was carried out by the team at Ada Logics, supported by <a class="read-more" href="/fuzzing-security-audit/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>Crossplane is happy to announce the successful completion of our fuzzing security audit. The work was carried out by the team at Ada Logics, supported by Crossplane contributor Philippe Scorsolini, and was sponsored by the CNCF as part of an initiative to bring fuzzing to the CNCF landscape. The audit&hellip;</p> </section> --> </div> </article> <article class="post tag-application-delivery tag-security tag-gke tag-gcp no-image"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/crossplane-v0-6-enabling-application-delivery-platforms-on-the-road-towards-production-ready/">Crossplane v0.6 - enabling application delivery platforms on the road towards production-ready!</a></h2> <span class="post-meta"><a href="/author/phil/">Phil Prasek</a> on <a href="/tag/application-delivery/">Application Delivery</a>, <a href="/tag/security/">Security</a>, <a href="/tag/gke/">GKE</a>, <a href="/tag/gcp/">GCP</a> | <time datetime="2020-01-12">12 Jan 2020</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <p>After recently turning 1 year old, the Crossplane project is excited to have closed out 2019 with enhanced API support for GKE clusters (node pools, auto-scaling, <a class="read-more" href="/crossplane-v0-6-enabling-application-delivery-platforms-on-the-road-towards-production-ready/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>After recently turning 1 year old, the Crossplane project is excited to have closed out 2019 with enhanced API support for GKE clusters (node pools, auto-scaling, gVisor container security, networking policies), simplified permission management with new default RBAC roles, and a new integration test framework in the crossplane-runtime. These new&hellip;</p> </section> --> </div> </article> <article class="post tag-azure tag-networking tag-security no-image"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/azure-secure-connectivity-for-aks-azure-db/">Azure secure connectivity for AKS &amp; Azure DB</a></h2> <span class="post-meta"><a href="/author/phil/">Phil Prasek</a>, <a href="/author/dan/">Dan Mangum</a> on <a href="/tag/azure/">Azure</a>, <a href="/tag/networking/">Networking</a>, <a href="/tag/security/">Security</a> | <time datetime="2019-10-17">17 Oct 2019</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <p>Azure Database instances can now be securely consumed from app deployments in an AKS cluster using kubectl with new Crossplane resources in the Azure Stack including: <a class="read-more" href="/azure-secure-connectivity-for-aks-azure-db/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>Azure Database instances can now be securely consumed from app deployments in an AKS cluster using kubectl with new Crossplane resources in the Azure Stack including: Virtual Networks (VNets), Subnets, VNet Rules, and more! Continuing our series on cloud networking &amp; security we鈥檒l explore new Crossplane support for provisioning&hellip;</p> </section> --> </div> </article> <article class="post tag-aws tag-networking tag-security no-image"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/aws-secure-connectivity-for-eks-rds/">AWS secure connectivity for EKS &amp; RDS</a></h2> <span class="post-meta"><a href="/author/javad/">Javad Taheri</a>, <a href="/author/phil/">Phil Prasek</a> on <a href="/tag/aws/">AWS</a>, <a href="/tag/networking/">Networking</a>, <a href="/tag/security/">Security</a> | <time datetime="2019-10-17">17 Oct 2019</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <p>The AWS Stack now supports securely connecting RDS instances and app deployments in an EKS cluster, using kubectl to manage new Crossplane resources including VPCs, Subnets, <a class="read-more" href="/aws-secure-connectivity-for-eks-rds/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>The AWS Stack now supports securely connecting RDS instances and app deployments in an EKS cluster, using kubectl to manage new Crossplane resources including VPCs, Subnets, SecurityGroups, IAM Roles and more! Continuing our series on cloud networking &amp; security we鈥檒l explore new Crossplane support for provisioning AWS networking and&hellip;</p> </section> --> </div> </article> <article class="post tag-gcp tag-networking tag-security no-image"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/gcp-secure-connectivity-for-gke-cloudsql/">GCP secure connectivity for GKE &amp; CloudSQL</a></h2> <span class="post-meta"><a href="/author/phil/">Phil Prasek</a>, <a href="/author/muvaffak/">Muvaffak Onu艧</a> on <a href="/tag/gcp/">GCP</a>, <a href="/tag/networking/">Networking</a>, <a href="/tag/security/">Security</a> | <time datetime="2019-10-16">16 Oct 2019</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <p>Securely consume CloudSQL instances from app deployments in a GKE cluster using private IP secure connectivity with new Crossplane resources in the GCP Stack including: Networks, <a class="read-more" href="/gcp-secure-connectivity-for-gke-cloudsql/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>Securely consume CloudSQL instances from app deployments in a GKE cluster using private IP secure connectivity with new Crossplane resources in the GCP Stack including: Networks, Subnetworks, GlobalAddresses, and Private Service Connections -- all from kubectl! Continuing our series on cloud networking &amp; security we鈥檒l explore new support for&hellip;</p> </section> --> </div> </article> <article class="post tag-crossplane tag-multicloud tag-networking tag-security tag-gcp"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/v0-3-how-crossplane-enables-secure-connectivity/">How Crossplane enables secure connectivity</a></h2> <span class="post-meta"><a href="/author/negz/">Nic Cope</a> on <a href="/tag/crossplane/">Crossplane</a>, <a href="/tag/multicloud/">Multicloud</a>, <a href="/tag/networking/">Networking</a>, <a href="/tag/security/">Security</a>, <a href="/tag/gcp/">GCP</a> | <time datetime="2019-10-16">16 Oct 2019</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <img src="/content/images/2019/10/MultiCloud_Plates.svg" class="front-page-image" /> <p>Insights into how we designed and built Crossplane Services to support secure connectivity, starting with a solid foundation of cloud-specific, high-fidelity resources, and then layering a <a class="read-more" href="/v0-3-how-crossplane-enables-secure-connectivity/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>Insights into how we designed and built Crossplane Services to support secure connectivity, starting with a solid foundation of cloud-specific, high-fidelity resources, and then layering a PVC-style claims/classes model on top. Resource classes now include secure connectivity options and new networking and security resources can be configured from kubectl.&hellip;</p> </section> --> </div> </article> <article class="post tag-crossplane tag-networking tag-security tag-stacks tag-aws tag-gcp tag-azure tag-gitlab no-image"> <div class="inner"> <header class="post-header"> <h2 class="post-title"><a href="/crossplane-v0-3-accelerating-support-for-more-clouds-and-managed-services/">Crossplane v0.3 - accelerating support for more clouds and managed services</a></h2> <span class="post-meta"><a href="/author/phil/">Phil Prasek</a> on <a href="/tag/crossplane/">Crossplane</a>, <a href="/tag/networking/">Networking</a>, <a href="/tag/security/">Security</a>, <a href="/tag/stacks/">Stacks</a>, <a href="/tag/aws/">AWS</a>, <a href="/tag/gcp/">GCP</a>, <a href="/tag/azure/">Azure</a>, <a href="/tag/gitlab/">GitLab</a> | <time datetime="2019-09-17">17 Sep 2019</time></span> <div class="clear"></div> </header> <section class="post-excerpt"> <p>New developer guide, CLI tooling and enhanced out-of-tree Infra Stacks (GCP, AWS, Azure) enables the community to add support for more cloud providers, managed Kubernetes offerings, <a class="read-more" href="/crossplane-v0-3-accelerating-support-for-more-clouds-and-managed-services/">&raquo;</a></p> </section> <!-- <section class="post-excerpt"> <p>New developer guide, CLI tooling and enhanced out-of-tree Infra Stacks (GCP, AWS, Azure) enables the community to add support for more cloud providers, managed Kubernetes offerings, and fully-managed cloud services that can be hosted in your cloud of choice. The momentum keeps rolling forward with Crossplane community engagement around extending&hellip;</p> </section> --> </div> </article> <nav class="pagination" role="pagination"> <div class="inner"> <span class="pagination-info">Page 1 of 1</span> <div class="clear"></div> </div> </nav> </main> </div> <div id="body-class" style="display: none;" class="tag-template tag-security"></div> <footer id="footer"> <div class="inner"> <section class="credits"> <span class="credits-theme">Theme <a href="https://github.com/zutrinken/attila">Attila</a> by <a href="http://zutrinken.com" rel="nofollow">zutrinken</a></span> <span class="credits-software">Published with <a href="http://ghost.org">Ghost</a></span> </section> </div> </footer> </section> <script type="text/javascript" src="/assets/js/script.js?v=a1348d70b3"></script> <!-- Google Tag Manager (noscript) --> <noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-WFF2NQHG" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript> <!-- End Google Tag Manager (noscript) --> </body> </html>