Say goodbye to your sidecars: Istio’s ambient mode reaches Beta in v1.22
Project post originally published on the Istio blog by Lin Sun, Solo.io, for the Istio Steering and Technical Oversight Committees Layer 4 & Layer 7 features are both now ready for production. Today, Istio’s revolutionary new…
A step-by-step guide to securely upgrading your EKS clusters
Member post originally published on Fairwinds’s blog by Stevie Caldwell As an agile open source project, Kubernetes continues to evolve, as does the cloud computing landscape. Keeping up with the latest versions isn’t practical for many…
Project post originally published on Kyverno’s blog Kyverno 1.12 released with new alternative report server, Global Context Entry, Kyverno JSON in CLI, performance optimizations, enhanced ValidatingAdmissionPolicy and PolicyException support, and tons more! The Kyverno team is…
How Katalyst guarantees memory QoS for colocated applications
Member post originally published on Katalyst’s blog In the previous post[1], we introduced Katalyst – a QoS-based resource management system that helps ByteDance improve resource efficiency through colocation of online and offline workloads. In the colocation…
Global leader in cybersecurity deepens investment in cloud native to drive innovation for end users SAN FRANCISCO, CA – April 10, 2024 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native…
K8s Benchmark Report: are organizations meeting NSA hardening checks?
Member post originally published on Fairwinds’s blog by Joe Pelletier The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) continue to update their Kubernetes hardening guidance, making recommendations to help organizations ensure they are hardening their Kubernetes…
KubeCon + CloudNativeCon Europe 2024 day 3: The power of sustainable computing
It’s a time of more: more data, more workloads, and more powerful technologies. So it’s critical to ask ourselves how cloud native can help improve our environmental footprint. Here’s what we heard at today’s keynotes. Keynotes:…
Workshop recap: Linkerd certificate management with Vault
Project post originally published on the Linkerd blog by Flynn This blog post is based on a workshop that I delivered way back in September 2023(!) at Buoyant’s Service Mesh Academy. If this seems interesting, check out…
Maturing Istio Ambient: compatibility across various Kubernetes providers and CNIs
Project post originally published on Istio’s blog by Ben Leggett, Yuval Kohavi, and Lin Sun An innovative traffic redirection mechanism between workload pods and ztunnel. The Istio project announced ambient mesh – its new sidecar-less dataplane mode in…
Securing services meshes easier with Kyverno
Project post originally published on Kyverno’s blog Service meshes are all too common these days in Kubernetes with some platforms even building them into clusters by default. Service meshes are no doubt useful in a variety…