In this tutorial, you will find an example of how to manage secrets on Kubernetes with Pulumi and GitOps using Sealed Secrets and ArgoCD.

More: https://blog.ediri.io/advanced-secret-management-on-kubernetes-with-pulumi-and-gitops-sealed-secrets-controller

Sveltos is a tool for managing Kubernetes add-ons in tens of clusters.

Support for ClusterAPI-powered clusters and Helm charts.

Sveltos has built-in support for multi-tenancy.

More: https://github.com/projectsveltos/sveltos-manager

Topology Aware Hints is a new feature in EKS that reduces data transfer costs by keeping traffic within the same availability zone.

It uses Pod Topology Spread Constraints to spread Pods evenly onto multiple node topologies.

Learn more in this article.

More: https://blog.ratnopamc.com/reduce-cross-az-traffic-costs-on-eks-using-topology-aware-hints

In this article, you will have a look at 12 security scanners for Kubernetes.

More: https://towardsdev.com/12-scanners-to-find-security-vulnerabilities-and-misconfigurations-in-kubernetes-332a738d076d

hardeneks is a tool that runs checks to see if an EKS cluster follows EKS Best Practices.

More: https://github.com/aws-samples/hardeneks

In this post, you'll learn how to create a new environment for each pull request with ArgoCD.

- Creating a Pull Request creates a new environment.
- Each git push builds an image and updates the app.
- Closing the pull request terminates the environment.

More: https://medium.com/@jerome.decoster/create-temporary-environment-from-pull-request-with-argocd-applicationset-1cef9803223a

Master Kubernetes with Learnk8s' Advanced Kubernetes workshops!

What should you expect?

- Learn how to architect and design clusters from the ground up (in the cloud or on-prem).
- Explore the Kubernetes internal component and how the system is designed with resiliency in mind.
- Deep-dive into the networking components and observe the packets flowing into the cluster.
- Hands-on labs to test the theory with real-world scenarios!
- And more.

The next course is next week and you can sign up here: https://learnk8s.io/online-advanced-april-2023

KubeBrain is a project that aims to replace etcd with a pluggable storage engine for Kubernetes.

More: https://github.com/kubewharf/kubebrain

In this article, you'll learn how to deploy a web application to Azure Kubernetes Service (AKS) without writing any Docker or Kubernetes manifest files.

Instead, you'll use Draft and Acorn.

More: https://medium.com/@pauldotyu/app-to-aks-with-draft-and-acorn-2d25f19649b7

This week on the Learn Kubernetes Weekly:

☁️ Using topology aware hints in EKS
👮‍♀️ 12 security scanners for Kubernetes
👻 Temporary environments with ApplicationSet
🦐 oslabs-beta/Palaemon
📦 Endpoints monitoring with blackbox-exporter

Read it now: https://learnk8s.io/learn-kubernetes-weekly

In this article, you will learn how you can use Google's Multi-cluster services (MCS) to reach GKE services on different VPCs between projects.

You'll also discuss some of the limitations and how this may be only a temporary solution.

More: https://medium.com/zeals-tech-blog/cross-project-cross-vpc-communication-with-gke-multi-cluster-services-1e48d912614c

In this tutorial, you'll learn how to deploy Prometheus and Grafana on Kubernetes.

Then you'll deploy an application that can publish custom metrics to Prometheus.

And finally, you'll use KEDA to auto-scale based on these metrics.

More: https://medium.com/@akarX23/deploying-prometheus-and-grafana-in-a-multi-node-kubernetes-cluster-and-auto-scaling-with-keda-eccecfbd8950

In this article, you will learn how to deploy the same app across multiple Kubernetes clusters with ArgoCD, vcluster and Kyverno.

More: https://piotrminkowski.com/2022/12/09/manage-multiple-kubernetes-clusters-with-argocd

Kubectl plugins for diagnosing pods that are "Not Ready" (that have failing Pod Conditions or containers).

This plugin also supports the standard Pod selection arguments and one or multiple pod names to explicitly diagnose.

More: https://github.com/alecjacobs5401/kubectl-sick-pods

In this article, you will learn how to use virtual threads, build a native image with GraalVM and run such the Java app on Kubernetes.

More: https://piotrminkowski.com/2023/01/04/native-java-with-graalvm-and-virtual-threads-on-kubernetes

gluster-kubernetes is a project to provide Kubernetes administrators with a mechanism to easily deploy GlusterFS as a native storage service onto an existing Kubernetes cluster.

More: https://github.com/gluster/gluster-kubernetes

In this article, you will learn how Uber built their remote development environment on Kubernetes using a custom operator and Custom Resource Definitions.

More: https://www.uber.com/en-MX/blog/devpod-improving-developer-productivity-at-uber

Pod priority and preemption help ensure that mission-critical pods are up in the event of a resource crunch by deciding the order of scheduling and eviction.

Learn more in this article.

More: https://kubernetes.io/blog/2023/01/12/protect-mission-critical-pods-priorityclass

Helmsman is a Helm Charts as Code tool which allows you to automate the deployment/management of your Helm charts from version-controlled code.

More: https://github.com/Praqma/helmsman

In this article, you will learn how to manage secrets securely on Kubernetes in the GitOps approach using Sealed Secrets, ArgoCD, and Terraform.

More: https://piotrminkowski.com/2022/12/14/sealed-secrets-on-kubernetes-with-argocd-and-terraform

Skaffold is a command line tool that facilitates continuous development for Kubernetes applications.

You can iterate on your application source code locally and then deploy to local or remote Kubernetes clusters.

More: https://github.com/GoogleContainerTools/skaffold