The Mondoo team is excited to announce the release of the Mondoo plugin for Hashicorp Packer, a powerful tool for securing and validating machine images.

Not too long ago, we attended KubeCon EU 2022. This was especially exciting because it was the first big-industry event that we attended being a startup born in a COVID world. Having a booth on the showroom floor, being able to connect with folks from all types of backgrounds, and sharing with them what we’re building was a great learning experience.

Welcome to the May 2022 recap of Mondoo releases.

The year of LTS Linux releases continues! Amazon is now shipping preview releases for Amazon Linux 2022, their latest long-term support (LTS) version of Amazon Linux. With this version, Amazon joins the LTS party started by Ubuntu Server 22.04 LTS, which we previously discussed in this blog.

AWS introduces new complexity to your infrastructure. With that complexity comes potential security risk to the organization. Amazon’s shared responsibility model places the reality of security within the cloud squarely in the hands of the DevOps team.

In the last 5 years, Kubernetes has gone from a technology for hip startups and tech wizards to a mainstay of the technology industry. A 2021 survey by the Cloud Native Computing Foundation (CNCF) shows that 96% of businesses of all sizes were either running or evaluating Kubernetes. 

Last week Mondoo sponsored our very first European event: DevOpsDays Birmingham! It was also the first DevOpsDays ever held in Birmingham. As a global core member of DevOpsDays and head of Community for Mondoo in Europe, I was delighted to get together once again with DevOps practitioners and thought leaders.

Welcome to the April 2022 recap of Mondoo releases. There are many updates that we hope you will like, including:

• AWS volume-based instance scanning
• Windows platform support
• Asset search and annotations
• Expanded insights in the Mondoo UI
• Mondoo domain change​
• Policy updates - 3 new policies, 2 policies newly certified, 5 policies improved

Long time listener, first time caller

I went to my first DevOps-oriented event eleven years ago. Over the last decade-plus of attending DevOpsDays events, it has been hugely rewarding to see the DevOps movement stretch into being, orient and define itself, and build toward a community of practice.

In the past year, devastating cloud security breaches have dominated technology headlines. These big news stories are only the tip of the iceberg in cybercrime—we don’t hear about the thousands of successful attacks that cripple worldwide businesses every day. The victims are financial institutions, governments, businesses, and other organizations who have seemingly thorough security policies in place. But these policies fail to protect them. Let’s explore why.