This is a summary of the Kubernetes project’s contributor community and activities. This report documents both quantitative measures of community health (project milestones and snapshot) as well as qualitative measures of the community as reported by…
Kubernetes ephemeral container security
Guest post originally published on Xenit’s blog by Philip Laine, DevOps Engineer at Xenit Attempting to debug a Pod and realizing that you can’t install curl due to security settings has to be a meme at…
Announcing the Refreshed Cloud Native Security Whitepaper
The CNCF Security Technical Advisory Group (TAG) has just released a refreshed Cloud Native Security Whitepaper v2 to help educate the community about best practices for securing cloud native deployments. The whitepaper intends to provide organizations…
Adopting FinOps tool for pod-level Kubernetes cost management
Guest post by Asaf Liveanu, Co-Founder & CPO at Finout Cost optimization is a growing concern for organizations rapidly moving towards open-source and cloud-native projects based on Kubernetes. While flexibility remains one of the key strengths…
How do you integrate Emissary Ingress with OPA
Guest post originally published on InfraCloud’s blog by Tayyab Jamadar API gateways play a vital role while exposing microservices. They are an additional hop in the network that the incoming request must go through in order…
How to secure deployments in Kubernetes?
Guest post originally published on ARMO’s blog by Leonid Sandler CTO & Co-founder at Armo Security is crucial for containerized applications that run on a shared infrastructure. With more and more organizations moving their container workloads…
The grype admission controller
Guest post originally published on the BoxBoat blog by Josh Knarr Intro Today I want to write about the grype admission controller. I wrote it. I am proud of it. I think it solves a really uncomfortable…
Kubernetes Scheduler introduction
Guest post originally published on Gemini Open Cloud‘s blog by Patrick Fu, CEO of Gemini Open Cloud Kubernetes is a portable, extensible, open-source cluster manager for managing containerized workloads and services. The features of Kubernetes include…
Testing cloud native best practices with the CNF Test Suite
Community post by Joel Hans for CNCF The telecommunications industry is the backbone of today’s increasingly-digital economies, but it faces a difficult new challenge in evolving to meet modern infrastructure practices. How did telecommunications get itself…
Karmada: Multi-cluster Management with an Ocean of Nodes
Guest post by Kevin Wang, Huawei and Shen Yifan, Commercial Bank of China In terms of multi-cluster management, Industrial and Commercial Bank of China (ICBC) found a new way to do it efficiently, that is, using…