Red Hat is excited to introduce the StackRox community, the upstream project that will work to open source and manage the code that powers Red Hat Advanced Cluster Security for Kubernetes. We believe the StackRox community will help drive significant innovation and benefits for users when it comes to security — an industry that has traditionally been dominated by proprietary solutions. Customers, partners and other interested contributors can learn more about joining the community at stackrox.io.

Since acquiring StackRox in February 2021, Red Hat has been actively working through the various considerations, both technical and legal, involved in the open sourcing process. At Red Hat, we believe using an open development model helps create more secure, stable and innovative technologies. This commitment to the tenets of open source is the core of our business model today, making our drive to fully open source the StackRox technology another example of how closely we hold the value of open code and development.

As security continues to be a critical need for organizations building and running Kubernetes applications, the StackRox community will work toward providing an open source project that gives users greater choice for how they protect their Kubernetes environments. Once up and running, the StackRox project will enable users to address major security use cases across the application lifecycle, including visibility, vulnerability management, configuration management, network segmentation, compliance, threat detection and incident response, as well as risk profiling. Red Hat also plans to make contributions to open source projects that the StackRox software benefits from and participate as active members of the communities that support those projects.

The StackRox project will be the code behind the Red Hat Advanced Cluster Security for Kubernetes product and we expect the project to help drive future product roadmaps. Red Hat Advanced Cluster Security for Kubernetes provides customers using Red Hat OpenShift and supported public cloud Kubernetes services with Kubernetes-native security to enhance the security of infrastructure and workloads throughout the entire application lifecycle.

The StackRox community will also encompass and continue to foster development of
KubeLinter, which was released as an open source project in October 2020. KubeLinter is a static analysis tool that gives developers the ability to more easily check Kubernetes YAML files and Helm charts to identify misconfigurations and enforce security best practices. 

Join The Community

We welcome and encourage all interested parties to join the StackRox community and participate as the community evolves. Your feedback and use cases are essential to informing and driving the StackRox project roadmap. We plan to provide updates as we work towards fully open sourcing StackRox over time. 

For more information and to hear the latest news about the community, visit StackRox.io or reach out to community@stackrox.io.


About the author

Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux, hybrid cloud, container, and Kubernetes technologies.

Read full bio