Sysdig Falco VS The Update Framework

From one noob to another - I had a lot of fun setting up Falco (https://falco.org) and creating custom policies & alerts. Source: 11 months ago

Falco is a well-known open source security solution originally created by Sysdig. It’s a CNCF incubating project and one of the few (as far as I can tell) options on this list that uses eBPF to scan for vulnerabilities. - Source: dev.to / almost 1 year ago

Use some kind of SIEM or Falco to alert you to threats (you can't stop them, but a human can always intervene). Source: about 1 year ago

Falco, is a security project that can help you detect threats from within your cluster. - Source: dev.to / over 1 year ago

Https://falco.org/ is a security-focused monitoring and alerting with an eBPF option. Source: over 1 year ago

The Update Framework (TUF): TUF is a framework, not a tool, designed to enhance the security of software update systems. It focuses on resilience against key compromises and attacks, employing verifiable records to verify the authenticity of update files. TUF's flexibility and integration ease make it a foundational element in securing software updates, though it's not a direct image signing tool like the others. - Source: dev.to / 6 months ago

Here’s to hoping they employ some security to prevent the machines from being hacked and attacking our own infra ala TUF (https://theupdateframework.io/) or the tech from Foundries.io. - Source: Hacker News / 9 months ago

Release signing—or attestation—was a hot topic at KubeCon among vendors, with many offering their own solutions. One in particular that stood out was CNCF’s recently graduated The Update Framework (TUF). - Source: dev.to / almost 1 year ago

One of the other solution for signature and handling their upgrade is https://theupdateframework.io/ . Haven't come around implementing it yet, but it sounds like a robust solution to this problem. Have you looked at it before? Source: over 1 year ago