Learn Kubernetes Weekly issue 55 · 29 Nov 2023
Image proxy cache: from minutes to milliseconds, Kubernetes workloads to Graviton, Memory settings for Java processes, Knative to 100k+ free-tier apps
Articles
Kubernetes image proxy cache : from minutes to milliseconds
medium.com
Harbor can act as a pull-through proxy cache that serves local container images directly to the client, reducing network latency and saving bandwidth.
This article teaches you how to use it to speed up container image distribution and cold starts.
How Swiggy migrated its Kubernetes workloads to Graviton
bytes.swiggy.com
In this article, you'll learn how Swiggy's adoption of AWS Graviton for their worker nodes has significantly reduced costs and improved availability.
They decreased infrastructure costs by around 30% and saw a 15% increase in pod performance.
Memory settings for Java process running in Kubernetes pod
medium.com
Managing memory usage of a Java process in a Kubernetes pod can be complex due to unpredictable fluctuations.
In this article, you'll learn how the memory is allocated in the JVM and some practical tips to identify the correct memory requests & limits.
How Render scaled Knative to Support 100k+ free-tier apps
dev.to
Render experienced a surge in traffic after Heroku ended its free offering, leading to infrastructure strain.
In this case study, you'll learn how they improved scalability by optimizing their Knative implementation.
How to achieve zero-downtime application with Kubernetes
www.qovery.com
The article provides detailed insights into achieving zero-downtime applications with Kubernetes:
- Container image location
- Pod Disruption Budget.
- Probes.
- Initial boot time delay.
- Graceful termination.
- Pod anti-affinity.
- Autoscaling.
What is GitOps and why is it (almost) useless?
hackernoon.com
In this controversial article, the author argues that GitOps is a (mostly) unnecessary abstraction that introduces more complexity than it's worth.
The article tackles several GitOps principles and gives practical code counterexamples.
Articles worth checking out:
Free Manning Early Access: Road to Kubernetes eBook
Akamai
Fifteen years of deployment experience into one accessible, practical guide.
You'll learn sustainable deployment practices you can use with any language and see how Kubernetes can be used for projects of any size.
Tutorials
GPU-powered Kubernetes clusters
medium.com
In this tutorial, you will learn the considerations and tools needed to create a GPU-powered Kubernetes cluster to schedule ML workloads (such as model training) and perform fast real-time inference.
Mutating webhook handler for built-in core types
levelup.gitconnected.com
In this tutorial, you will learn how to create a mutating webhook handler for namespaces using Kubebuilder.
Sign and verify container images with Cosign and Kyverno
medium.com
In this tutorial, you'll learn how to sign and verify Docker distroless images with Cosign and Kyverno.
Expanding your Kubernetes toolbox: the power of CRDs
medium.com
This tutorial provides a step-by-step guide to creating Custom Resource Definitions (CRDs) in Kubernetes.
You will create a WorkSchedule CRD to define working hours for automating the management of workloads in developer namespaces.
By default, Kubernetes Secrets are not encrypted; values are merely base64 encoded.
And this is fine — at least, this is what Mac argues in this episode of KubeFM.
Mac says it all comes down to thinking strategically about security and where the Secrets could be leaked.
In this episode, you will learn:
- How to define a threat model to inform your security posture and mitigations.
- How Kubernetes Secrets offer sufficient guarantees for most common threat models.
- If you should use Hashicorp Vault or Kubernetes Secrets (and when not to use auto-unsealing).
Mac also covers tips and advice on becoming a security expert.
Kubernetes jobs
Site Reliability Engineer with Digital Waffle
Salary: €65K a year
Location: based in the office (and remote from home) in Birmingham, GB
Tech stack: Kubernetes, AWS, Docker, Java, Shell, Python, Terraform, Cloudformation, Jenkins, Travis CI
Machine Learning Engineer with FATHOM
Salary: $160K to $220K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, Airflow
DevSecOps Engineer with Angi
Salary: $175K to $185K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, On-premise, Helm, Python, SQL, Java, Scala, Ruby, Terraform
Discover more Kubernetes jobs on Kube Careers →
Code & tools
github.com/marvasgit
Kubernetes Multi Cooker automatically taints and evicts nodes with high CPU overload based on chosen Metric PSI or Average Load.
Kubefarm: Kubernetes-in-Kubernetes
github.com/kubefarm
Kubefarm combines everything you need to spawn multiple Kubernetes-in-Kubernetes clusters and network booting configurations to simplify bootstrapping your physical servers from scratch.
github.com/kubernetes
kube-state-metrics (KSM) is a service that listens to the Kubernetes API server, and generates metrics about the state of objects such as deployments, nodes and pods.
Trolley multi-cloud management system
github.com/Trolley-MGMT
Trolley is a multi-cloud Kubernetes management system.
This simplified user interface allows users to deploy, edit and delete clusters and deployments within them on AWS, Azure and GCP.
github.com/rafttio
Kube or Fake? is a mini-game where the player's goal is to correctly guess whether a ChatGPT generated word is a real Kubernetes term or made up.
Other interesting projects:
Upcoming Kubernetes events
Dec
1
Kubernetes Community Days Utrecht 2023
In-person conference organized by KCD Netherlands.
Location: Utrecht, NL
This is a free event.
Dec
4
In-person conference organized by NFJS Events.
Location: Clearwater, FL, USA
This event requires an entrance fee
Dec
5
Online & in-person conference organized by Linux Foundation.
Location: Tokyo, JP and virtual
This event requires an entrance fee
Dec
5
In-person conference organized by Linux Foundation.
Location: Tokyo, JP
This event requires an entrance fee
Dec
5
Online conference organized by Linux Foundation.
This is a virtual event
This event requires an entrance fee
Jan
25
Online workshop organized by Learnk8s.
This is a virtual event
This event requires an entrance fee
Kubernetes call for papers
expired
Kubernetes Community Days Costa Rica 2024
The Call For Paper was open until 1 February 2024 at UTC. More info →
Location: Heredia, CR
In-person conference organized by KCD Costa Rica.
The conference starts on the 1 March 2024.
- Apply here
expired
Kubernetes Community Days Romania 2024
The Call For Paper was open until 31 January 2024 at UTC. More info →
Location: Bucharest, RO
In-person conference organized by KCD Romania.
The conference starts on the 25 April 2024.
- Apply here
expired
Kubernetes Community Day São Paulo 2024
The Call For Paper was open until 3 December 2023 at UTC. More info →
Location: São Paulo, BR and virtual
Online & in-person conference organized by KCD Brasil.
The conference starts on the 23 February 2024.
- Apply here
expired
The Call For Paper was open until 4 December 2023 at UTC. More info →
Location: San Jose, CA, USA
In-person conference organized by Linux Foundation.
The conference starts on the 29 April 2024.
- Apply here
expired
The Call For Paper was open until 8 December 2023 at UTC. More info →
Location: Brussels, BE
In-person conference organized by FOSDEM.
The conference starts on the 4 February 2024.
- Apply here
expired
Open Source Camp on Kubernetes
The Call For Paper was open until 30 November 2023 at UTC. More info →
Location: Nuremberg, DE
In-person conference organized by NETWAYS.
The conference starts on the 27 February 2024.
- Apply here
expired
The Call For Paper was open until 1 December 2023 at UTC. More info →
Location: Birmingham, AL, USA
In-person conference organized by Devopsdays.
The conference starts on the 18 April 2024.
- Apply here
expired
The Call For Paper was open until 31 January 2024 at UTC. More info →
Location: Vilnius, LT and virtual
Online & in-person conference organized by DATA MINER.
The conference starts on the 20 May 2024.
- Apply here
expired
The Call For Paper was open until 23 January 2024 at UTC. More info →
Location: Istanbul, TR
In-person conference organized by Devopsdays.
The conference starts on the 20 April 2024.
- Apply here
Until next time!
- Dan