Why Micromize?
Traditional container security often involves creating complex profiles (like Seccomp or SELinux) for each application to audit or restrict its capabilities. Micromize flips this model.
Instead of defining what each container can do, Micromize applies a broad set of sensible restrictions to all containers running on a node.
BPF LSM Powered
Leverages eBPF for high-performance, kernel-level enforcement.
Container Aware
Built for Kubernetes and container runtimes.
Modular Architecture
Built on top of Inspektor Gadget.