The Cloud Native Computing Foundation (CNCF) has announced a new bug bounty program to reward Kubernetes security bug hunters. Security researchers who find security vulnerabilities in Kubernetes’ codebase as well as the build and release processes, will be rewarded with bounties ranging from $100 to $10,000.
This bug bounty program will be operated by HackerOne, the hacker-powered security company. The Kubernetes Bug Bounty program was in private testing for several months and is now open to all security researchers. Kubernetes is a container orchestration system for automating application deployment, scaling, and management.