Red Hat has announced that Red Hat Advanced Cluster Security for Kubernetes (RHACS) has been made open-source as StackRox. The Kubernetes and container security community can now use and contribute to the codebase of StackRox on GitHub.

In February last year, Red Hat closed the transaction to acquire StackRox. At that time, Red Hat said StackRox would help to simplify DevSecOps, and its integration into Red Hat OpenShift will help users to enhance cloud-native application security across every IT footprint. 

“Red Hat has always maintained its commitment to supporting the open-source community, and with this news, we’re enabling developer and security teams to deliver more secure applications faster,” added the company in a blog.

Red Hat lists down a few areas where StackRox will be helpful to operationalise and implementing security for its supply chain, infrastructure, and workloads. It helps to integrate security into the CI/CD pipelines and image registries to provide continuous image scanning and assurance. Red Hat says that StackRox can help to prevent configuration drift by compliance checks against CIS benchmarks or custom policies. 

It also analyses existing rules for role-based access control (RBAC) to prevent insecure access and authorisations. It prevents high-risk workloads from deploying or running, using out-of-the-box deploy-time and runtime policies, and monitors known good behaviour to configure custom policies and alerts for anomalous and malicious behaviour.