KubeLetter #10

KubeLetter #10

Hey everyone, we're already on the 10th edition of the Kubeletter! It's less than a month before KubeCon is here, along with all of the co-located events. In this newsletter, we've included some news, resources, and all the co-located events during KubeCon.

Do you like CFPs? Good, because there are a lot of CFPs in this newsletter! Submit them before they close.

What's new with cloud-native

  • The Korean version of the cloud native glossary is live! Want to contribute by translating the glossary to your local language? Hop into the CNCF slack and discuss with the team.
  • The SPIFFE and SPIRE projects have now graduated from the incubating state!
  • Istio, an open source service mesh, has been accepted as a CNCF incubating project.
  • ArgoCon 2022 wrapped up last month with a number of great talks. The recordings of the talks have been uploaded to YouTube in case you missed them or want to hear them again.
  • Tracetest v0.7 comes with updates to make installation easier and improvements to the workflow.
  • Last month, Civo organized the Cloud Native Community Meet London. Check out some of the highlights from the meetup.
  • The CNCF is conducting a WASM survey. Do you work with WASM? Fill out the survey to help improve the technology.

Blogs

  • Cloud Costs are on the rise because of many hidden costs. Check our case study on Finout which is a tool useful to monitor and optimize all your cloud costs.
  • You don't want to deploy an application that has critical bugs and vulnerabilities to production. For this, we have Sprkl which is a tool that will let you see the impact of your code change in VScode itself instead of finding it in production.

  • Message brokers are an effective way for APIs to communicate. This is especially necessary when your applications run as microservices in a Kubernetes Cluster. Check out our case study on Memphis.dev, which is a great message broker for fast and efficient API communication.
  • Chaos Engineering is a great way to create robust and resilient cloud-native systems. Check out our case study on LitmusChaos and how it can help you to make robust systems.
  • Designing and making stateful cloud-native applications can be difficult and you might overlook some important things. Here are 9 of the most overlooked questions when designing your stateful applications.

  • GitOps is a popular way to implement DevOps practices in a Git workflow. Check out this blog by Gautam Jha to get a great introduction to GitOps.
  • Application security is something you cannot and should not overlook. Here is how you should be thinking about securing Kubernetes with WAF and DoS protection.
  • Bugs are going to appear in every application. Even in mission-critical tools. Here are 10 mission-critical Kubernetes tools and how you can debug them.
  • Lens is a very popular and powerful Kubernetes IDE which a ton of features. Here are 5 things you probably didn't know you could do with Lens.
  • Are developers no longer going to be needed? Should you choose it as a career? Here is what Natasha from Wilco has to say on the topic.
  • In today's world lot of assets have become digitalized. As such, there is a need for technical due diligence. Here's how comprehensive codebase scanning can give better insights into the assets.

  • Want to run a Minecraft server on Kubernetes Check out this blog from Plural.sh to learn how to run a Minecraft server on Kubernetes and play with your friends.
  • Monitoring your applications and clusters is important for a lot of reasons. Here is a guide by Komodor on how you can set up monitoring for your microservices using Prometheus and Grafana.
  • Security threats can originate not only in your code and its dependencies, but they could also be in your CI/CD pipelines. Here is how you can secure CI/CD pipelines.
  • You don't want your CI/CD pipelines to have security issues. Here's how you can use security gates to secure your pipelines.

Videos

  • What is Kubernetes Cronjobs? are they even used? Learn all about K8s Cronjobs in this talk from KubeCon EU 2021.

  • What is the CNCF Glossary? In this video, Kunal Verma will explain the glossary, and how you can use it to your benefit.
  • It is crucial for developers to have visibility into the vulnerabilities early in the Software Development Life Cycle(SDLC) process to minimize the attack surface and save developers time. Learn how to use Lens Security to discover vulnerabilities earlier in your software development life cycle.
  • GitOps can automate a lot of tasks making release cycles faster. Let's look at how you can GitOps your Terraform.

Events

Cloud-native tools highlight

  • The Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines.
  • Clusterman (the Cluster Manager) is an autoscaling engine for Mesos and Kubernetes clusters. It looks at metrics and can launch or terminate compute to meet the needs of your workload
  • KubeEye is an open-source diagnostic tool for identifying various Kubernetes cluster issues automatically, such as misconfigurations, unhealthy components, and node failures.
  • Argus is a set of custom Kubernetes resources that facilitates filesystem event monitoring on specified paths. It provides a rich set of configurations to run alongside your existing Kubernetes deployments to make it easy to denote assessment-ready file integrity monitoring.

Tweets of the week

That's all for this newsletter. There are a ton of CFPs. Submit your talks and some might get accepted!

Did you find this article valuable?

Support WeMakeDevs by becoming a sponsor. Any amount is appreciated!