Project post originally published on the Flux blog by Daniel Holbach As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities…
CNCF On demand webinar: gVisor+Falco-Strengthen K8s & container security without losing visibility
gVisor is an application kernel that provides an additional layer of isolation between running applications and the host operating system. This extra layer greatly improves the security of workloads, but can impede container visibility. Discover how…
Cloud Native Live: Using OTel Distributed Tracing for Real Time Observability
OpenTelemetry distributed tracing platform Jaeger has become a powerful must-have observability tool for Dev and Ops teams. But Ops teams still face a big challenge in making distributed tracing practically useful. With the high volumes and…
Getting started with gVisor support in Falco
Project post originally published on the Falco blog by Luca Guerra, Lorenzo Susini, Vicente J. Jiménez Miras In version 0.32.1, Falco first introduced support for gVisor. So, what is it and how can we use it? gVisor, quoting the official…
CNCF Live Webinar: Extending kubectl with plugins and krew
Kubectl is the tool for interacting with your Kubernetes cluster. But did you can make it even more powerful by adding your own commands? We will explore how we can extend kubectl to improve our workflows…
Guest post from Huawei by David Eads (@deads2k), Kevin Wang (@kevin-wangzefeng) Current users will know that KubeFed was an early answer to the issue of centralized management of multiple Kubernetes clusters– but as community engagement has…
An open source policy engine that automates remediation: Polaris
Guest post by Robert Brennan, VP of product development, Fairwinds Polaris is an open source policy engine that runs dozens of checks to ensure that your Kubernetes pods and controllers are configured using best practices in…
10 critical Kubernetes tools and how to debug them
Guest post originally published on the Rookout blog by Gedalyah Reback, Senior Product Marketing Manager at Rookout Kubernetes is both revolutionary and “diffusionary.” It is a complete restructuring demanding a whole new slew of companion and…
Protect the pipe! Secure CI/CD pipelines with a policy-based approach using Tekton and Kyverno
Guest post originally published on the Nirmata blog by Jim Bugwadia of Nirmata and Shripad Nadgowda a Cloud Architect at Intel Rise of software supply chain attacks In the last few years there has been a…