Alex shares the OpenFaaS 2019 Project Update, case-studies, personal highlights, and the roadmap for the year.

Developers need to make a Kubernetes security hardening a priority before you dabble with Jenkins X in your environment. Don't let Kubernetes vulnerabilities expose your valuable data to possible ...

A high-severity vulnerability impacts kubectl.

Kubernetes v1.15 introduces alpha support for volume cloning. This feature allows you to create new volumes using the contents of existing volumes in the user's namespace using the Kubernetes API.
What is a Clone? Many storage systems provide the ability…

CustomResourceDefinitions were introduced roughly two years ago as the primary way to extend the Kubernetes API with custom resources. From the beginning they stored arbitrary JSON data, with the exception that kind, apiVersion and metadata had to follow…

Guest post by Fei Guo and Lei Zhang of Alibaba Abstract: In this guest post, the Kubernetes team from Alibaba will share how they are building hard multi-tenancy on top...

Update 2021-11-29: we’ve repeated these experiments with the latest versions of Linkerd and Istio.
(Update 5/30/2019: Based on feedback from the Istio team, Kinvolk has re-run some of the Istio benchmarks. The results are largely similar to before, with Linkerd…

Of all the problems we have confronted, the ones over which the most brain power, ink, and code have been spilled are related to managing configurations — Borg, Omega, and Kubernetes - Lessons learned from three container-management systems over a decade…

Containers are part of the vast majority of daily interactions with software and the cloud these days. From building applications in a…

An OPA Use Case for Whitelisting AWS Roles for Use With Kiam and Kube2iam

If you want to achieve security by design in your project and mitigate cyber threats before they hit your applications, you will need to discuss these risks with your team and plan ahead. If you don’t know how to get started, this guide is for you.

Distributed systems, microservices, containers and schedulers, polyglot persistence .. modern infrastructure patterns are fluid and dynamic, chaotic and transient. So why are we still using LAMP-stack era tools to debug and monitor them? We’ll cover some…

My least favorite part of working with Kubernetes is running it on my laptop. Now, I don’t have to.

1) Incident reviews serve multiple purposes. Some of these purposes are overt and explicit but many are not.  Some of these purposes cut across others in unproductive ways. Competing agendas reveal the power dynamics present in the organization. A manager…

What's new in Kubernetes 1.15: Major improvements to the CustomResourceDefinitions (CRD), Event API overhaul, Kubernetes scheduler plugins and much more.

Discover a new simple, consistent and automated way to install & update components of your Kubernetes clusters.