Weaveworks, a SaaS that simplifies deployment monitoring and management for containers and microservices, acquired the policy-as-code startup Magalix to secure Kubernetes applications by integrating the solution into Weave GitOps. 

The CEO of Weaveworks, Alexis Richardson,  commented:

“Enterprise customers have made it clear that trusted application delivery is critical to the success of their increasingly complex cloud-native platforms. With the acquisition of Magalix, Weaveworks introduces customizable policies, compliance capabilities, and comprehensive risk visibility into GitOps workflows, ensuring only authorized applications are deployed and there are no nefarious activities.”

The integration of Magalix’s policy engine will help DevOps teams to apply consistent policies and practices across multiple Kubernetes environments. This will empower Weaveworks customers to bridge the gap between developers, DevOps, and security teams.

According to Weaveworks, Magalix simplifies DevSecOps and enables cloud-native environments to be more secure by integrating directly into the source, build, and deployment stages of the software lifecycle.

The approach will be the same as Kubernetes so that users can scale their applications while maintaining regulatory requirements using Magalix’s security capabilities. Mohamed Ahmed, the founder, and CEO of Magalix said:

“We are seeing an increase in customers who run a zero-trust security model turning to GitOps to bring DevOps to cloud-native application development and IT operations.”

Ahmed also noted that they believe that integrating security into GitOps pipelines brings considerable agility and speed, preventing errors and protecting against attacks that could shut down the entire platform. He ensured that Weaveworks and Magalix share the same mission to ease innovation without jeopardizing security and stability.