The Headlines
Editor’s picks of the highlights from the past week.
Runc and CVE-2019-5736
Noah Kantrowitz, Kubernetes
This week a container escape vulnerability in runc was announced. We wanted to provide some guidance to Kubernetes users to ensure everyone is safe and secure.
Building a Kubernetes Edge (Ingress) Control Plane for Envoy v2
Daniel Bryan & Richard Li, Datawire
With the open source Ambassador API Gateway, we wanted to tackle the challenge of creating a new control plane that focuses on the use case of deploying Envoy as a forward-facing edge proxy within a Kubernetes cluster, in a way that is idiomatic to Kubernetes operators. In this article, we’ll walk through two major iterations of the Ambassador design, and how we integrated Ambassador with Kubernetes.
Istio and Kubernetes in production. Part 2. Tracing
Alexander Lukyanchenko, Avito
In the previous post, we took a look at the building blocks of Service Mesh Istio, got familiar with the system, and went through the questions that new Istio users often ask. In this post, we will look at how to organize the collection of tracing information over the network.
Webinars
Upcoming webinars on cloud native technologies.
To Russia With Love – Kubernetes in Exotic Locations
Michael Wojcikiewicz, CloudOps
February 19 @ 10 am – 11 am PDT
REGISTER NOW »
Everything You Need to Know About the CKA and CKAD
Randy Abernethy, RX-M
February 21 @ 10am – 11am PDT
REGISTER NOW »
The Technical
Tutorials, tools, and more that take you on a deep dive into the code.
Development in the Cloud
Jakub Borys, Student.com
Microservices Orchestration with Kubernetes
Asad Faizi, CloudPlex.io
Using Kubernetes
Deepak D, deechris27
What every Data Scientist should know about Kubernetes (but they are afraid to ask) Part 1
Jacek Bzdak, Logic AI
Kubernetes Ingress Controllers: How to choose the right one: Part 1
Eric Liu, ITNEXT
Develop, Build, Release & Deploy
Dipanshu Goyal
Kubernetes adventures — Creating a Kubernetes cluster
Diego Lakatos
Using SPIRE to (Automatically) Deliver TLS Certificates to Envoy For Stronger Authentication
Andrew Harding, Scytale.io
Tooling Spotlight:
- kube-psp-advisor – Help building an adaptive and fine-grained pod security policy
- kuberhealthy – Easy synthetic testing for Kubernetes clusters. Works great with Prometheus.
- Autocert – A kubernetes add-on that automatically injects TLS/HTTPS certificates into your containers.
The Editorial
Articles, announcements, and more that give you a high-level overview of challenges and features.
How Aspen Mesh Runs Cortex in Production
Neeraj Poddar, Aspen Mesh
IBM preps Watson AI services to run on Kubernetes
Serdar Yegulalp, InfoWorld
Will Kubernetes Be the Operating System for 5G? AT&T News Suggests Yes
Joan Engebretson, Telecompetitor
Joe Beda on Kubernetes & the CNCF
Wesley Reisz, InfoQ
What is Knative, and What Can It Do for You?
Sonya Koptyev, Twistlock
Kubernetes and AI are like peas and carrots
Carmine Rimi, App Developer Magazine
Does Kubernetes have a target on its back?
Robert Lemos, TechBeacon
CKAD (Certified Kubernetes Application Developer) — My journey
Haripraghash Subramaniam
Kubernetes as the simplest complex solution
Andrew Howden, DevOpsLinks
===========================================================
KubeWeekly is curated by Bob Killen, Chris Short, Kaitlyn Bardnard and Michael Hausenblas