GitLab announced the general availability of GitLab Duo with Amazon Q.
CoreStack announced its strategic partnership with Nirmata.
The CoreStack platform provides holistic SecOps, FinOps, and CloudOps solutions, as well as a well-architected framework for governance across multi-cloud. This partnership will enable and extend CoreStack’s SecOps to provide autonomous governance of Kubernetes resources for security and compliance.
CoreStack’s SecOps solution empowers customers to achieve security, compliance, enhance cloud operational efficiencies, and optimize costs. It is a powerful solution that enables organizations to proactively govern security operations autonomously and achieve continuous cloud compliance with evolving regulatory and industry standards.
The Nirmata Kubernetes Policy Manager facilitates continuous compliance by employing policy-as-code, admission controls, and runtime best practices. Nirmata enables Kubernetes DevSecOps teams to ensure the security, compliance, and operational readiness of their Kubernetes workloads and clusters; by automating the creation, deployment, and lifecycle management of policy-based Intelligent Guardrails, customers can gain insights, alerts, and reports, and enable effective collaboration across the development and operations teams.
This strategic partnership empowers organizations to:
- Obtain an accurate and unified view of the entire multi-cloud and get visibility into multi-account inventory and compliance status of all cloud resources, including Kubernetes
- Quickly identify threats, continuously evaluate vulnerabilities, and gain real-time cloud security posture using its converged policy engine
- Reduce attack surface with Secure Policy Enforcement. In addition to protecting other cloud resources, customers can protect and govern Kubernetes workloads and clusters by rapidly identifying and fixing risky configurations
- Operationalize DevSecOps process using Policy Administration. DevSecOps teams can collaborate more effectively with automation and integrations that create policy lifecycle alerts, and garner insights from reports
- Accelerate and achieve cloud-native agility by enabling developers to deliver releases faster and respond to changes confidently with security and compliance. With curated and crowdsourced Policy Sets for Kubernetes, developers can be freed from the friction that limits experimentation and lessens productivity
“In today’s cloud-first world, governing security operations proactively and autonomously is of paramount importance to build a secure, compliant, and resilient cloud,” said Parul Chheda, VP of Strategic Alliances at CoreStack.
“Businesses are challenged with application reliability, security, and efficiency. DevSecOps teams need to gain visibility into Kubernetes clusters and implement necessary guardrails as the organization scales,” said Ritesh Patel, Co-founder, and VP of Products, Nirmata. “We have partnered with CoreStack to leverage their next-gen SecOps solution to address this at scale, given the complexity of cloud-native environments.”
Industry News
Perforce Software and Liquibase announced a strategic partnership to enhance secure and compliant database change management for DevOps teams.
Spacelift announced the launch of Saturnhead AI — an enterprise-grade AI assistant that slashes DevOps troubleshooting time by transforming complex infrastructure logs into clear, actionable explanations.
CodeSecure and FOSSA announced a strategic partnership and native product integration that enables organizations to eliminate security blindspots associated with both third party and open source code.
Bauplan, a Python-first serverless data platform that transforms complex infrastructure processes into a few lines of code over data lakes, announced its launch with $7.5 million in seed funding.
Perforce Software announced the launch of the Kafka Service Bundle, a new offering that provides enterprises with managed open source Apache Kafka at a fraction of the cost of traditional managed providers.
LambdaTest announced the launch of the HyperExecute MCP Server, an enhancement to its AI-native test orchestration platform, HyperExecute.
Cloudflare announced Workers VPC and Workers VPC Private Link, new solutions that enable developers to build secure, global cross-cloud applications on Cloudflare Workers.
Nutrient announced a significant expansion of its cloud-based services, as well as a series of updates to its SDK products, aimed at enhancing the developer experience by allowing developers to build, scale, and innovate with less friction.
Check Point® Software Technologies Ltd.(link is external) announced that its Infinity Platform has been named the top-ranked AI-powered cyber security platform in the 2025 Miercom Assessment.
Orca Security announced the Orca Bitbucket App, a cloud-native seamless integration for scanning Bitbucket Repositories.
The Live API for Gemini models is now in Preview, enabling developers to start building and testing more robust, scalable applications with significantly higher rate limits.
Backslash Security(link is external) announced significant adoption of the Backslash App Graph, the industry’s first dynamic digital twin for application code.
SmartBear launched API Hub for Test, a new capability within the company’s API Hub, powered by Swagger.
Akamai Technologies introduced App & API Protector Hybrid.