Editor’s picks of the highlights from the past week.
Runc and CVE-2019-5736
Noah Kantrowitz, Kubernetes
This week a container escape vulnerability in runc was announced. We wanted to provide some guidance to Kubernetes users to ensure everyone is safe and secure.
Building a Kubernetes Edge (Ingress) Control Plane for Envoy v2
Daniel Bryan & Richard Li, Datawire
With the open source Ambassador API Gateway, we wanted to tackle the challenge of creating a new control plane that focuses on the use case of deploying Envoy as a forward-facing edge proxy within a Kubernetes cluster, in a way that is idiomatic to Kubernetes operators. In this article, we’ll walk through two major iterations of the Ambassador design, and how we integrated Ambassador with Kubernetes.
Istio and Kubernetes in production. Part 2. Tracing
Alexander Lukyanchenko, Avito
In the previous post, we took a look at the building blocks of Service Mesh Istio, got familiar with the system, and went through the questions that new Istio users often ask. In this post, we will look at how to organize the collection of tracing information over the network.
Upcoming webinars on cloud native technologies.
To Russia With Love – Kubernetes in Exotic Locations
Michael Wojcikiewicz, CloudOps
February 19 @ 10 am – 11 am PDT
REGISTER NOW »
Everything You Need to Know About the CKA and CKAD
Randy Abernethy, RX-M
February 21 @ 10am – 11am PDT
REGISTER NOW »
Tutorials, tools, and more that take you on a deep dive into the code.
Development in the Cloud
Jakub Borys, Student.com
Microservices Orchestration with Kubernetes
Asad Faizi, CloudPlex.io
Deepak D, deechris27
Develop, Build, Release & Deploy
Using SPIRE to (Automatically) Deliver TLS Certificates to Envoy For Stronger Authentication
Andrew Harding, Scytale.io
- kube-psp-advisor – Help building an adaptive and fine-grained pod security policy
- kuberhealthy – Easy synthetic testing for Kubernetes clusters. Works great with Prometheus.
- Autocert – A kubernetes add-on that automatically injects TLS/HTTPS certificates into your containers.
Articles, announcements, and more that give you a high-level overview of challenges and features.
How Aspen Mesh Runs Cortex in Production
Neeraj Poddar, Aspen Mesh
IBM preps Watson AI services to run on Kubernetes
Serdar Yegulalp, InfoWorld
Will Kubernetes Be the Operating System for 5G? AT&T News Suggests Yes
Joan Engebretson, Telecompetitor
Joe Beda on Kubernetes & the CNCF
Wesley Reisz, InfoQ
What is Knative, and What Can It Do for You?
Sonya Koptyev, Twistlock
Kubernetes and AI are like peas and carrots
Carmine Rimi, App Developer Magazine
Does Kubernetes have a target on its back?
Robert Lemos, TechBeacon
CKAD (Certified Kubernetes Application Developer) — My journey
Kubernetes as the simplest complex solution
Andrew Howden, DevOpsLinks