The sovereign supply chain for Canada's classified Kubernetes.

A Canadian-incorporated Kubernetes supply chain vendor, outside US CLOUD Act reach. Northfleet supplies the bundle protocol, attestation chain, and tamper-evident audit trail that cleared engineering teams apply to their Protected B and Secret Kubernetes clusters on Canadian-jurisdictional infrastructure. The customer brings the cluster; Northfleet supplies the trust path between build and apply.

northfleet.tech · Field notes · Contact

This organization hosts open-source utilities that contribute to the shared procurement vocabulary for Canadian defence engineering teams. Both are Apache 2.0.

• cpcsc-l1-self-assessment — A self-assessment template for the 13 controls that comprise Level 1 of the Canadian Programme for Cyber Security Certification. Verbatim PSPC content, approximately 70 individual determination statements, one row per attestation criterion in the CSV. Effective April 1, 2026 as a procurement gate for Canadian defence contracts.
• itsg33-kubernetes-protected-b-mapping — A mapping of CCCS ITSG-33 Annex 4A Profile 1 (Protected B, Medium Integrity, Medium Availability) controls to Kubernetes mechanisms, bucketed by admin-implemented, workload-implemented, and external (where upstream Kubernetes alone is insufficient).

Neither utility encodes Northfleet implementation specifics. They are public framework content with a community usability layer.

If you are evaluating sovereign infrastructure for classified workloads, the conversation is open at northfleet.tech. A briefing follows first contact.