We are excited to announce the results of our security audit of Inspektor Gadget! With the help of @Shielder and the Cloud Native Computing Foundation (CNCF), this project received a security audit reviewing Inspektor Gadget’s core components.

Read more about the work done on the collection of open source libraries and tools for data collection and inspection of Kubernetes clusters and Linux hosts at our blog: https://ostif.org/inspektor-gadget-audit-complete/

#cncf #audit #opensource #cybersecurity #inspektorgadget

Can a hostile container sneak past your eBPF tracing? Sometimes, yes.

With @ostifofficial & @cloudnativefdn we audited Inspektor Gadget - 3 vulns (fixed), 6 hardenings, 6 bypasses (io_uring, openat2, jumbo frames…).

Work by @ndaprela & @suidpit

🔗 https://www.shielder.com/blog/2026/04/inspektor-gadget-security-audit/

Love breaking things just to see how they work? 🐛🔨

​A @Shielder delegation is on the ground at @fosdem, and we're looking for fellow hackers and security researchers.

​If you are passionate about securing the Open Source world, we definitely need to talk!

Last week @apple released MacOS 13.4 which contains a fix for a vulnerability @suidpit exploited to escape the Sandbox.

Update now and stay tuned for the technical details!

Ref: https://support.apple.com/en-us/122373