News KrakenD EE v2.8 released: Configurable logging, Redis-backed rate limits, Lua, YAML encoding and more

Company AnnouncementsSecurity

1 min read

KrakenD becomes a CNA (CVE Numbering Authority)

by Albert Lombarte

CVE The Spanish National Cybersecurity Institute (INCIBE) announces today the addition of KrakenD as a CNA (CVE Numbering Authority). KrakenD assumes as its own, from this date, the best practices of this program.

KrakenD is now authorized by the CVE Program to assign CVE identifiers within its scope and its corresponding publication in the CNA section. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities.

Our commitment to security is at our core and we want to make it easier for both open source users and customers to monitor and resolve future problems with the maximum transparency. Through this partnership, we will guarantee that companies using our software have mitigation mechanisms for any problems found before making the vulnerability public in the CVE.

KrakenD API Gateway is a popular tool in the open-source community worldwide. It runs on more than two million servers monthly, so the collaboration between INCIBE and KrakenD brings a real benefit to the community. KrakenD SL is the first Spanish server connectivity software company to join the CNA program.

Scarf

Stay up to date with KrakenD releases and important updates