Testing Kubernetes deployments within CI Pipelines
Guest post originally published on eficode Praqma by Michael Vittrup Larsen, Cloud Infrastructure and DevOps Consultant at Eficode-Praqma Low overhead, on-demand Kubernetes clusters deployed on CI Workers Nodes with KIND How to test Kubernetes artifacts like…
Identifying Kubernetes Config Security Threats: Pods Running as Root
Guest post by Joe Pelletier, VP of Strategy at Fairwinds With different teams – development, security and operations – and prioritization of speedy delivery over perfect configuration, mistakes are inevitable. As teams work on building and…
Kubernetes and storage. Kubernetes for storage. An overview.
Originally designed for stateless workloads only, over the last two to three years, the growth of stateful workloads on Kubernetes has been rapid. Today it is common to see monitoring, logging, e-commerce, CI/CD, ML, and other…
Project Antrea is an open source Kubernetes CNI network plugin simplifying secure pod connectivity and network policy enforcement powered by Open vSwitch (OVS). Project Antrea provides a powerful toolset to reason about and troubleshoot distributed security…
Kubernetes Resources Management – QoS, Quota, and LimitRange
Guest post originally published on the Darumatic blog by Brandon Tsai Before Kubernetes, software applications were typically run standalone in a VM and use up all the resources. Operators and developers needed to carefully choose the…
Kubernetes podcast: "CNCF: Under new management, with Priyanka Sharma"
After 5 years at the helm of the CNCF, executive director Dan Kohn is stepping down to launch a new Public Health initiative. The new General Manager of the CNCF is Priyanka Sharma, who joins our…
The top 7 most useful Kubernetes APIs for comprehensive cloud native observability
An important early step (just after “Orchestration & Application Definition” in the CNCF trail map) in starting your cloud-native journey is picking solutions for observability, including monitoring, logging, and tracing. All of these observability tools leverage…
Building Production-ready Services with Kubernetes and Serverless Architectures
Kubernetes developers and operators lack the tools that app developers take for granted in programming languages: control flow, abstractions, IDE integration, and vendoring. These hard-won technologies amplify the effectiveness of a team, and make it easier…
Commoditise Kubernetes with cluster-api
Kubernetes wasn’t invented to become a new pet in your home, but more like the cattle on a ranch. It isn’t cute and lovely or something you treat like a family member. Kubernetes was made to…
Stay on top of ongoing Kubernetes security hygiene
Containers deployments in Kubernetes clusters create both familiar and new security challenges. Given the ephemeral nature of containers, the speed and agility goals of microservices architecture, a preliminary detection of potential risks and an early discovery…