Kelemetry: global tracing for Kubernetes control plane
Member post originally published on ByteDance’s blog by Jonathan Chan Kelemetry is a tracing system for the Kubernetes control plane developed in ByteDance. It connects the behavior of various Kubernetes components and traces the entire lifecycle of a…
Kubernetes logging best practices
Community post by Selvam R, DevOps Engineer, Chennai (Winner of the KCD Chennai Blogathon) Kubernetes is a popular open-source platform for container orchestration that is widely used by developers and DevOps teams for deploying and managing containerized applications….
Congratulations to 57 CNCF Term 1 LFX Program Mentees!
By Staff A huge number of successful CNCF interns have graduated from this term’s LFX Program: 57! We had a great showing from the CNCF community with involvement across Graduated, Incubating, and Sandbox projects as well as TAGs…
Kyverno — verify Kubernetes control plane images
Guest post originally published on Medium by Charles-Edouard Brétéché In this story we are going to deploy a local Kubernetes cluster using kind, then we will deploy Kyverno and use it to verify Kubernetes control plane images signature. What is Kyverno ? Kyverno is an open-source policy engine for Kubernetes that allows you to…
New Kubernetes security audit complete and open sourced
By Chris Aniszczyk (@cra) and Rey Lejano In 2018, the Cloud Native Computing Foundation (CNCF) started performing and open sourcing third-party security audits with the goal of improving the overall security practices of our ecosystem. Since then, Argo,…
CNCF fuzzing open source projects for security and reliability
By Chris Aniszczyk, Adam Korczynski, David Korczynski Introduction In this blog post we will present an overview of the state of fuzzing CNCF projects. We published a blog post on this in June 2022 titled Improving Security by…
Stability and scalability assessment of KubeVela
Guest post by Da Yin, infra engineer at Alibaba Cloud and KubeVela maintainer Background With the release of v1.8, KubeVela, the OAM-based application delivery project, has been continuously evolving for over 3 years. It is now being adopted…
Super bot for Kubernetes clusters
Guest post by: One stop shop messaging bot for monitoring, notifying and debugging anywhere, anytime. Bots have been around humans for a while now and used for variety of purposes. The most common ones are notification receivers through…
KubeGateway: A customized seven-layer Load Balancer for kube-apiserver
Guest post originally published on ByteDance’s blog by Jun Zhang KubeGateway is a seven-layer load balancer specially customized by ByteDance for kube-apiserver traffic characteristics. It completely solves the problem of kube-apiserver load imbalance. For the first time in…
2022 Kubernetes vulnerabilities – Main takeaways
Guest post originally published on ARMO’s blog by Ben Hirschberg All the main K8s vulnerabilities from 2022 consolidated into one article. Put together by Ben Hirschberg, CTO & co-founder of ARMO. During 2022, Kubernetes continued to cement itself as a…