Istio is a project that platform engineers trust to enforce security policy in their production Kubernetes environments. We pay a lot of care to security in our code, and maintain a robust vulnerability program. To validate our work, we periodically invite external review of the project, and we are pleased to publish the results of our second security audit. The auditors’ assessment was that “Istio is a well-maintained project that has a strong and sustainable approach to security”. No ...
