Learn Kubernetes Weekly issue 77 · 1 May 2024
Moving up the stack, Cut container startup time, Abusing Distroless, Hacking Kubernetes in AWS, deep dive into cgroups, 2vCPU faster in a VM
This newsletter is brought to you by Komodor — simplify cluster management and troubleshooting to unlock the full value of Kubernetes.
Articles
medium.com
In this case study, you will learn how PTS decided to migrate its services to the cloud and Kubernetes.
You will follow their steps, decisions and lessons learned in building KARGO — their internal development platform.
Kubernetes sidecar containers: practical guide with examples
komodor.com
The sidecar pattern abstracts some features away from the main application, such as monitoring, logging, and configuration of the main container.
In this article, you will learn how to master it.
sponsored
Cut container startup time for better performance and costs
medium.com
In this 2-part article, you will dive into cost optimization tactics across infrastructure, container design, and even code-level tweaks.
Abusing a Distroless container
medium.com
This article argues, and demonstrates that Distroless containers are not immune to unconventional hacking methods just because shell programs aren't included in the image.
medium.com
In this article, you'll learn how to secure EKS by intentionally attaching the wrong policies to pods and hacking the cluster.
You will misconfigure AWS Identity and Access Management (IAM) roles for the service accounts (IRSA) feature.
Unraveling Kubernetes: a deep dive into cgroup resource management
medium.com
This article delves into the inner workings of cgroups and how they are used to limit resource usage in containers, creating a hierarchical structure for effective resource management.
Articles worth checking out:
The continuous Kubernetes reliability platform
Komodor
Simplify cluster management and troubleshooting to unlock the full value of Kubernetes and drive innovation at scale.
Tutorials
Looking for GPU Capacity? DWS got you covered!
medium.com
In this tutorial, you will learn how to combine the Dynamic Workload Scheduler (DWS) and Kueue to optimize the utilization of GPU resources in GCP.
In this KubeFM episode, Alexander Block delves into the intricacies of Kubernetes templating and deployment tools, sharing his journey from frustration with existing solutions to creating his tool, kluctl.
Alex also discusses the challenges and solutions in Kubernetes templating and deployment, emphasizing the need for more adaptable tools in the Kubernetes ecosystem.
You will learn:
- The fundamental flaws of Helm and how they impact Kubernetes deployments and tools packaging.
- How tools such as Kustomize, CUE, jsonnet are only a partial solution to templating.
- Alternatives to Helm and the future of Kubernetes resource templating and distribution.
Kubernetes jobs
DevOps Engineer with PressReader
Salary: US$110K to US$130K a year
Location: based in the office (and remote from home) in British Columbia, CA
Tech stack: Kubernetes, AWS, Azure, GCP, On-premise, ArgoCD, Docker, Openstack, Terraform, Azure DevOps
Software Engineer with Boba Commodities
Salary: £110K to £120K a year
Location: based in the office (and remote from home) in London, GB
Tech stack: Kubernetes, AWS, Python, SQL, Javascript, C#, Flink, Airflow, Kafka, Terraform
DevOps Engineer with Madwire
Salary: $100K to $160K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, GCP, Go, Python, Javascript, Terraform, Pulumi, CircleCI, GitHub Actions
DevSecOps Engineer with Monta
Salary: kr. 52K to kr. 64K a year
Location: based in the office (and remote from home) in Copenhagen, DK
Tech stack: Kubernetes, AWS, ArgoCD, PHP, Kotlin, GitHub Actions, Sentry, Grafana Mimir, Grafana, OpenSearch
Discover more Kubernetes jobs on Kube Careers →
Code & tools
github.com/NCCloud
Mayfly is a Kubernetes operator that enables you to create temporary resources on the cluster that will expire after a certain period of time.
Reloader: controller to watch changes and restart
github.com/stakater
Reloader is a Kubernetes controller that monitors changes in ConfigMap and Secrets and triggers rolling upgrades on Pods with their associated Deployment, StatefulSet or DaemonSet.
github.com/democratic-csi
democratic-csi implements the CSI spec providing storage for various container orchestration systems such as Kubernetes.
The current focus is providing storage via iscsi/nfs from zfs-based storage systems predominantly FreeNAS/TrueNAS and ZoL on Ubuntu.
Pluto: discover deprecated apiVersions
github.com/FairwindsOps
Pluto is a utility to help users find deprecated Kubernetes API versions in their code repositories and their helm releases.
chaos-mesh.org
Chaos Mesh brings various types of fault simulation to Kubernetes and can orchestrate fault scenarios.
It helps you simulate various abnormalities that might occur in reality during the development, testing, and production.
Other interesting projects:
Upcoming Kubernetes events
May
8
In-person conference organized by KubeHuddle.
Location: Toronto, CA
This event requires an entrance fee
May
6
Advanced Kubernetes course (San Francisco)
In-person workshop organized by Learnk8s.
Location: San Francisco, CA, USA
This event requires an entrance fee
May
9
Strengthening AKS with powerful network management & hyper-efficient Serverless on Kubernetes
In-person meetup organized by Cloud Native Auckland.
Location: Auckland, NZ
This is a free event.
May
1
7 billion events - Kubernetes and how Novu sends notifications at scale
Online webinar organized by Novu.
This is a virtual event
This is a free event.
May
8
In-person conference organized by JOT.
Location: Malaga, ES
This event requires an entrance fee
Kubernetes call for papers
expired
The Call For Paper was open until 5 May 2024 at UTC. More info →
Location: Hong Kong, HK
In-person conference organized by Linux Foundation.
The conference starts on the 21 August 2024.
- Apply here
expired
The Call For Paper was open until 10 June 2024 at UTC. More info →
Location: Salt Lake City, UT, USA and virtual
Online & in-person conference organized by Linux Foundation.
The conference starts on the 12 November 2024.
- Apply here
expired
Kubernetes Community Days Lima, Perú 2024
The Call For Paper was open until 16 May 2024 at UTC. More info →
Location: Lima, PE
In-person conference organized by KCD Lima, Perú.
The conference starts on the 20 July 2024.
- Apply here
expired
The Call For Paper was open until 19 May 2024 at UTC. More info →
Location: Tokyo, JP
In-person conference organized by Linux Foundation.
The conference starts on the 27 August 2024.
- Apply here
expired
The Call For Paper was open until 4 June 2024 at UTC. More info →
Location: London, UK
In-person conference organized by KCD UK.
The conference starts on the 23 October 2024.
- Apply here
expired
Kubernetes Community Days Washington DC 2024
The Call For Paper was open until 3 June 2024 at UTC. More info →
Location: Washington, DC, USA
In-person conference organized by KCD Washington DC.
The conference starts on the 24 September 2024.
- Apply here
expired
Kubernetes Community Days Austria 2024
The Call For Paper was open until 22 June 2024 at UTC. More info →
Location: Vienna, AT
In-person conference organized by KCD Austria.
The conference starts on the 10 October 2024.
- Apply here
expired
Devopsdays Ukraine: let's talk security
The Call For Paper was open until 4 May 2024 at UTC. More info →
This is a virtual event
Online conference organized by Devopsdays.
The conference starts on the 4 June 2024.
- Apply here
expired
The Call For Paper was open until 14 June 2024 at UTC. More info →
Location: Santa Clara, CA, USA
In-person conference organized by DevNetwork.
The conference starts on the 14 November 2024.
- Apply here
Until next time!
— Dan