Kubernetes network Policy eXploration tool: A simple tools that allows you to query all the defined network policies, and associated affected Pods. - aporeto-inc/kubepox

HashiCorp Terraform 0.12.2 added official support for a Puppet provisioner. One caveat is that the provisioner is only available in 0.12.x of Terraform. The provisioner provides a number of feature…

In the last security-related part of the Design Phase of the System Development Life Cycle (SDLC) is threat modelling, affectionately…

In Part One, I introduced the basic building blocks of our On-Prem container platform and discussed our motivations and goals. Please read…

We use HashiCorp’s Nomad scheduler to schedule application containers with our internal PaaS.

I had my fair share in designing and building large systems. I've taken part in
rewriting Uber's distributed payment systems
[https://blog.pragmaticengineer.com/distributed-architecture-concepts-i-have-learned-while-building-payments-systems/]
, designing…

Using probabilistic risk KPIs to direct complex risk engineering efforts.

New team-based organizational designs are proving valuable across the IT industry. Read this guest post from Matthew Skelton, co-author of Team Topologies.

Kubernetes is a container orchestration framework that is increasingly widely used in enterprise and elsewhere. While the industry is starting to pay so…

Intro Hi folks.
Today, I would like to show you how my infrastructure is deployed and managed. Spoiler alert, I’m using Kubernetes to do that.
I know… What a twist!
Let’s get to it.
What What services am I running exactly? Here is a list I’m running at the…

Liz Rice, Technology Evangelist at Aqua Security In a containerized deployment, how do you safely pass secrets—like passwords and certificates—between contai...

Setting up Kubernetes can be a procedure that takes some time, but with K3S and a Ansible playbook we can get a Kubernetes cluster up and running within 5min.

There is a new hype in the DevOps world: Istio and service meshes. But why exactly is everyone suddenly migrating to Istio? In this post, we will examine whether it actually makes sense to use Istio and in which use cases it may help you (as well as when…

Helm summit was held in Amsterdam last week. It was a great gathering of around 150 Helm enthusiasts representing various Kubernetes users…

Kubernetes secrets that you load into the cluster must exist somewhere. Do you keep a copy or rely on Kubernetes to be the only source of truth? How do you back them up? What if you keep a copy and they go out of sync?

aks-periscope aims to detect various kubernetes cluster problems - Azure/aks-periscope

UPDATE: For a newer Istio control plane upgrade method using the canary upgrade flow see the Safe and sound canary upgrade for your Istio control plane post.
Check out Backyards in action on your own clusters!
Register for a free version
Want to know more?…

While Go is the language-of-choice in the cloud-native world, Python has a huge community and makes it really easy to extend Kubernetes in only a few lines of code.
This post is a follow-up to a talk

[DEPRECATED] Kubernetes operator for managing the lifecycle of Apache Flink and Beam applications. - GitHub - GoogleCloudPlatform/flink-on-k8s-operator: [DEPRECATED] Kubernetes operator for managin...