Blog


Best practices for deploying applications to production in Kubernetes
Member Post Best practices for deploying applications to production in Kubernetes
Guest post originally published on the Elastisys blog Going live with your application and deploying it to production on Kubernetes means you are exposing it to your end users. You want this to be a successful rollout, and...
May 30, 2022

SSH bastions break your zero trust model
Member Post SSH bastions break your zero trust model
Guest post originally published on the Appaegis blog by Michael Shieh It’s a common practice to set up a bastion server to provide access to the host and then use that as the gateway for SSH connectivity. The...
May 27, 2022 | By Michael Shieh

Flux’s KubeCon Europe 2022 Wrap-Up
Project Post Flux’s KubeCon Europe 2022 Wrap-Up
Project post originally published on the Flux blog by Daniel Holbach It was KubeCon + CloudNativeCon EU 2022 last week and if you weren’t able to attend, this post provides you with everything you need to know about...
May 27, 2022

Designing secure applications
Member Post Designing secure applications
Guest post originally published on the Snapt blog by Iwan Price-Evans Hackers, malware, cybercriminals, and more threaten modern applications constantly. Malicious actors will try to uncover and exploit any vulnerabilities to steal private data, disrupt your service, and...
May 26, 2022 | By Iwan Price-Evans

The components of OpenTelemetry
Member Post The components of OpenTelemetry
Guest post originally published on the Scout APM blog by Dave Anderson, CTO, Scout APM Before we dive into the Collector, let’s cover the components that make up the OpenTelemetry project. Scout’s blog post “What is OpenTelemetry” gives...
May 25, 2022 | By Dave Anderson

Kubernetes ephemeral container security
Kubernetes ephemeral container security
Guest post originally published on Xenit’s blog by Philip Laine, DevOps Engineer at Xenit Attempting to debug a Pod and realizing that you can’t install curl due to security settings has to be a meme at this point....
May 24, 2022 | By Philip Laine

What is high cardinality?
Member Post What is high cardinality?
Guest post originally published on Chronosphere’s blog by Rob Skillington  With the transition from monolith to cloud-native environments, we are seeing an ongoing explosion of metrics data in terms of both volume and cardinality. This is because microservices...
May 23, 2022 | By Rob Skillington 

Comparing Frameworks for Node.js Serverless Apps
Member Post Comparing Frameworks for Node.js Serverless Apps
Guest post originally published on the Rookout blog by Gedalyah Reback Cloud deployments have gotten more complicated over the years. That’s on them, but it’s not necessarily to a fault – there’s just so much more you can...
May 23, 2022 | By Gedalyah Reback

Announcing the Secure Software Factory Reference Architecture Paper
TAG Post Announcing the Secure Software Factory Reference Architecture Paper
Community post by Alexander Floyd Marshall from TAG Security Almost a year ago the CNCF published its “Software Supply Chain Best Practices” guide, detailing over 50 ways to improve cloud-native software supply chains. That guide referenced the concept...
May 20, 2022

Announcing the Refreshed Cloud Native Security Whitepaper
Community Post Announcing the Refreshed Cloud Native Security Whitepaper
The CNCF Security Technical Advisory Group (TAG) has just released a refreshed Cloud Native Security Whitepaper v2 to help educate the community about best practices for securing cloud native deployments. The whitepaper intends to provide organizations and their...
May 18, 2022