Avsnitt
-
We talk with Nikhita Raghunath, Nabarun Pal, and Paco Xu. Nikhita, Nabarun, and Paco have each held various leadership positions related to the Kubernetes project. They talk about their journeys, the various leadership roles they’ve been in, and offer advice for new contributors and those who want to move into leadership in the project.
Nikhita is a Staff Software Engineer at Broadcom. She is currently a member of the CNCF Technical Oversight Committee (TOC) overseeing all technical matters of the CNCF. In the past, she was a member of the Kubernetes Steering Committee, a technical lead for SIG Contributor Experience and has also won the CNCF Top Committer Award. Currently, she is also a co-chair of the KubeCon+CloudNativeCon conference.
Nabarun is a Staff Software Engineer at Broadcom, a maintainer of the Kubernetes project, a member of the Kubernetes Steering Committee and a chair of Kubernetes SIG Contributor Experience. In the past, he was the release lead for Kubernetes 1.21 and has served eight release teams. Nabarun also works actively with the Python community by organizing PyCon India and has been recognized in media publications for his work.
Paco is an open source team lead in DaoCloud. He started to work on container/docker in 2016 and later started to participate in the Kubernetes Community in 2018. He is a current member of Kubernetes Steering Committee and works mainly on kubeadm and sig-node. He is Co-chair of KubeCon+CloudNativeCon China 2024.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekBlog: 10 Years of Kubernetes
CNCF-Hosted Co-Located Events Overview
CFP for CNCF-hosted Co-located Events
Kubernetes Community Days
Links from the interviewsCNCF Technical Oversight Committee
SIG ContribEx
Google Summer of Code
CNCF Top Committer Award 2021 - Nikhita Raghunath
Blog Post: Google Summer of Code with Kubernetes by Nikhita Raghunath
Kubernetes Docs: Extend the Kubernetes API with CustomResourceDefinitions
SIG API Machinery
SIG Testing
SIG Release
CNCF Chop Wood Carry Water Award 2018 - Nikhita Raghunath
Kubernetes Steering Committee
KubeCon India
KubeCon NA
Kubernetes 1.21: Power to the Community
Pycon India
Kubernetes Python Client on GitHub
Kubernetes Contributor Summit 2019 YouTube Playlist
Kubernetes Release Team
KubeCon NA 2024 Scholarships (applications due by September 1, 2024)
Kubeadm
SIG Node
KubeCon China 2024
Kubelet
Kubernetes Production Readiness Review Process
Kubernetes Release Team CI Signal Lead Runbook
-
Welcome to the second episode of the 4 part special series for the Kubernetes 10 year anniversary. In this episode we spoke to two very influential people in Kubernetes’ history. Tim Hockin and Kelsey Hightower Both have been involved with the project since its inception and both had, and continue to have, impact on the project and the community.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
Chatter of the weekKuberTenes Regional Events
Kubernetes Twitter Account
News of the weekKubernetes introduces hydrophone
AKS Automatic
CKS Changes after Sept 12, 2024
KubeCon and CloudNativeCon CFP Closes June 9th
KubeCon Co-Located events CFP Closes June 14, 2024
Links from the interviewGoogle Borg
Google Omega
Let Me Contain That For You
Kubernetes Sidecars
Why Service Is the Worst API in Kubernetes
Kubernetes Maintainers Read Mean Comments
Kubernetes The Hard Way
Kelsey retirement announcement
Redpanda
Crossplane
Llama 3
Open-core model
Lets Encrypt
Google's infrastructure for everyone else
Kubernetes: Up and Running
CNI
Kubernetes Networking
Kubernetes Resource Model (KRM)
-
Saknas det avsnitt?
-
This episode is the first in our four-part Kubernetes 10 Years Anniversary special! The focus of this episode is on Kubernetes maintainers who have been involved with the project since its early days, and who are still active today. Featuring guests: David Eads, Davanum Srinivas (Dims), and Federico Bongiovanni.
David is a senior principal software engineer at Red Hat. He started contributing to Kubernetes before v1 and now serves as a sig-auth tech lead and sig-apimachinery tech lead and chair.
Dims is a principal engineer at AWS, long term contributor to Kubernetes who served in multiple committees for the project. Today dims is in the Technical Oversight Committee or TOC. Welcome to the show Dims!
Federico Bongiovanni is an engineering manager at Google. He started using Kubernetes in the early days at a previous company, and became a contributor about 6 years ago when he joined Google. Today, he’s a Co-chair of SIG-APIMachinery. Welcome to the show! Would you like to tell us more about yourself?
Do you have something cool to share? Some questions? Let us know:
- web: [kubernetespodcast.com](https://kubernetespodcast.com)
- mail: [[email protected]](mailto:[email protected])
- twitter: [@kubernetespod](https://twitter.com/kubernetespod)
News of the weekhttps://istio.io/latest/news/releases/1.22.x/announcing-1.22/
https://kubernetes.io/blog/2024/05/09/gateway-api-v1-1/
https://traefik.io/blog/traefik-3-0-ga-has-landed-heres-how-to-migrate/
https://devblogs.microsoft.com/dotnet/dotnet-build-2024-announcements/
https://events.linuxfoundation.org/kuber10es-birthday-bash/
https://www.cncf.io/kubertenes/
Links from the interviewKubernetes SIG Auth
Kubernetes SIG API Machinery
Automagic kubectl config merging causes hair loss
Safety or Usability: Why Not Both? Towards Referential Auth in K8s - Rob Scott, Google & Mo Khan, Microsoft
Open Stack
Kubernetes Cloud Provider OpenStack
RedHat OpenShift
Kubernetes SIG Architecture
Kubernetes Kubelet
Blog: Completing the Largest Migration in Kubernetes History
Dims’ PR removing over 1 million lines of Cloud Provider code from Kubernetes
KubeCon EU 2024 talk: Kubernetes Is FINALLY Removing in-Tree Cloud Providers - Bridget Kromhout & Chris Privitere
KEP-2395: Removing In-Tree Cloud Provider Code
Blog from 2019 about the reasoning behind the removal of cloud provider code
Blog about setting cloud provider code to disabled by default in v1.29
The March 2024 Spotlight blog on SIG Cloud Provider
Links from the post-interview chatKubernetes Maintainers Read Mean Comments - Tim Hockin, Google & Davanum Srinivas, Amazon Web Services
“Working in Public: The Making and Maintenance of Open Source Software” by Nadia Eghbal
Keynote: A Vision for Vision - Kubernetes in Its Second Decade - Tim Hockin
SIG K8s Infrastructure
-
Álvaro Hernández is the founder and CEO of OnGres a company that provides among other things a distribution of Postgres that runs on Kubernetes, called “StackGres”. Álvaro is also an AWS Data Hero and a passionate database and open source software developer
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
Note: This episode was edited on May 17th to remove a chatter segment from episode 219, which had been mistakenly edited into it.
News of the weekKubernetes code cleanup
KEP-2395: Removing In-Tree Cloud Provider Code - GitHub KEP Readme
Remove gcp in-tree cloud provider and credential providers - GitHub PR
Spotlight on SIG Cloud Provider - Blog
The Future of Cloud Providers in Kubernetes - Blog
Kubernetes 1.29: Cloud Provider Integrations Are Now Separate Components - Blog
Google I/O
KubeCon + CloudNativeCon Europe 2024 Report
KuberTENes Birthday Bash
The Kubernetes Community takes over kubernetesio on X
WG-Serving on GitHub
DoK Community Ambassador Applications
Links from the interviewÁlvaro Hernández:
LinkedIn
Twitter/X
OnGres
PostgreSQL
Stackgres.io
Stackgres github
Kubernetes
Pg_repack
Data on Kubernetes (DoK) Community
Data On Kubernetes 2022 Report
Data on Kubernetes Whitepaper - Database Patterns - by CNCF TAG Storage
Istio
Apache Zookeeper
Strimzi - CNCF Project for running Apache Kafka on Kubernetes
Apache Kafka
Postgres extensions
The Kubernetes Operator Pattern
Presentation about PostreSQL Hooks from PostgreSQL wiki
OCI - Open Container Initiative
Why Postgres Extensions should be packaged and distributed as OCI images
-
Guests Thomas Poignant and Todd Baert are Software engineers with long experience working on IAM systems and feature flagging software. Today they are both maintainers and members of the Technical Committee of OpenFeature which is a CNCF incubated project.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekIstio service Mesh add-on on Azure Kubernetes Services
The CNCF released their 2023 annual survey
Women Who code closed its doors
Vulnerability in OpenMetadata version 1.31 or lower
Links from the interviewThomas Poignant
LinkedIn
Twitter/X
Todd Baert
LinkedIn
Twitter/X
OpenFeature
Feature Flagging
Pete Hodgson article on feature flags
Go feature flag
Flagd
FlagSmith
-
In this episode, release lead Kat Cosgrove walks us through what’s new in Kubernetes 1.30. Recorded at KubeCon EU 2024.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekGoogle Cloud Next Wrap Up Blog
Amazon EKS extended support for Kubernetes versions now generally available
Introducing the Windows Operational Readiness Specification
Links from the interviewKubernetes v1.30: Uwubernetes blog
A Peek at Kubernetes v1.30
Release Team Lead Handbook
Kubernetes Release Team info
-
KubeCon EU 2024 was the largest KubeCon yet! Explore the trends and learnings from the event through interviews with attendees.
Featuring:
Olivia Al-Joundi
Tabitha Sable
Sreeram Venkitesh
Lachlan Evenson
James Blair
Ian Coldwater
Gabriele Bartolini
Benjamin Koltermann
Benazir Khan
And additional Guest Host, Mofi Rahman.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekGo Workspaces in Kubernetes Blog by Tim Hockin
Fermyon SpinKube donation announcement
Istio Announces the Beta Release of Ambient Mode - Blog
KubeCon EU 2024 CNCF Highlights Blog
Kubestronaut Program Announcement Blog
CNCF Udemy Partnership Announcement Blog
Cloud Native Hacks Winners Blog
KubeCon NA CFP
KubeCon CloudNativeCon NA
Cloud Native Glossary — the Japanese version is live! - Blog
KuberTENes logo design contest
KuberTENes.cncf.io
Links from the interviewFrom Zero to Hero: Scaling Postgres in Kubernetes Using the Power of CloudNativePG - Gabriele Bartolini, EDB
This Meeting Is Better Than An Email: A Panel Discussion on Facilitating Great Meetings
SIG Security Update: Growing Together
Cloud Native Rejekts
Links from the post-interview chatWasmCon 2023 Kubernetes Podcast episode
Ray on Kubernetes (KubeRay)
-
Matt Klein is the CTO of bitdrift which is building a Mobile observability platform. Matt is known for being the creator of Envoy, one of the most popular open source proxies in the cloud space.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekCloud Native Rejekts
CNCF 2024 Prospectus
KubeCon Paris Guide Abdel co-authored
KubeCon Paris Recommendations Map
Links from the interviewMatt Klein:
Twitter
LinkedIn
Envoy Proxy
Twitter kicks Android app users out for five hours due to 2015 date bug
NGINX
HAProxy
Matt Klein’s X post about 1 billion pulls for envoy on DockerHub
Envoyproxy on DockerHub
Envoymobile
Rust programming language
-
Mike Coleman is a developer advocate at Sysdig focused on open source software and spends a lot of time working on the Falco project. We’ll explore how Falco enables runtime security, and celebrate its recent graduation!
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the week
Falco Graduation announcement
Google Gemma Open Model
GitOps Associate Certification (CGOA)
Certified GitOps Associate (CGOA) Exam
Linkerd 2.15 announcement
Linkerd 2.15 stable release announcement
Crossplane 1.15 announcement
Open Source Summit North America Schedule
Cloud Native Security Con North American
Cloud Native Security Con America CFP
Links from the interviewMike Coleman
LinkedIn
Twitter
"Docker?!?! But, I’m a sysadmin" - Mike Coleman
Mike Colemane and Bill Gates in an Earthquake
Falco project
LinkedIn
Twitter
Slack
KubeCon NA 2019 CTF
Cryptomining Detection Using Falco
Navigating Open Source Project Hurdles to Achieve Community Enpowerments Aizhamal Nurmamat kyzy & Bob Killen
Wrangle your alerts with open source Falco and the gcpaudit plugin
Falcosidekick
Practical Cloud Native Security with Falco
Certified Kubernetes Security (CKS) exam
-
Lucas Käldström is a CNCF Ambassador, Kubernetes contributor and expert. Lucas Co-led SIG cluster lifecycle, ported Kubernetes to ARM and shepherded kubeadm from inception to GA. Today Lucas runs three meetup groups in Finland, studies at Aalto University, and, when time allows, contributes to cloud native software as a contractor.
We chatted about Kubernetes API machinery, Chaos, Entropy, and Dishwashers.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekWeaveworks shutdown their operations
Weavwork CEO Alexis Richardson post on Linkedin
kubetrain.io
Bytedance KubeAdmiral on GitHub
Bytedance KubeAdmiral Announcement on InfoQ
Strimzi joins the CNCF Incubator
Microsoft new Cost Management tools for Azure
Links from the interviewLucas Käldström
LinkedIn
Twitter/X
Kubernetes as a dishwasher
Understanding Kubernetes Through Real-World Phenomena and Analogies - Lucas Käldström
Lucas research thesis
Paper - Large-scale cluster management at Google with Borg
API Machinery
Dr. Stefan Schimanski
KCP - Kubernetes-Like Control Plane
Kubernetes API Conventions
SIG Architecture
Ingress2gateway - Ingress to Gateway Migrator
Promise Theory: Principles and Applications (Mark Burgess, Jan Bergstra)
In Search of Certainty: The Science of Our Information Infrastructure (Mark Burgess)
Sweden Finns
Links from the post-interview chatKeynote: Reperforming a Nobel Prize Discovery on Kubernetes - Ricardo Rocha & Lukas Heinrich
Why Service Is the Worst API in Kubernetes, & What We’re Doing About It - Tim Hockin
Gateway API TCP Routes
Community-Powered Kubernetes LTS: Ensuring Stability and Compatibility While Driving Innovation Jeremy Rickard
https://github.com/yannh/kubeconform
-
Madhav Jivrajani is an engineer at VMware, a tech lead in SIG Contributor Experience and a GitHub Admin for the Kubernetes project. He also contributes to the storage layer of Kubernetes, focusing on reliability and scalability.
In this episode we talked with Madhav about a recent post on social media about a very interesting stale reads issue in Kubernetes, and what the community is doing about it.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
Chatter of the weekMofi Rahman co-host this episode with Kaslin
Twitter/X
LinkedIn
Kubernetes Podcast episode 211
News of the weekGoogle announced a new partnership with Hugging Face
RedHat self-managed offering of Ansible Automation Platform on Microsoft Azure
The schedule for KubeCon CloudNativeCon EU 2024 is out
CNCF Ambassador applications are open
The CNCF Hackathon at KubeCon CloudNativeCon EU 2024 CFP is open now
The annual Cloud Native Computing Foundation report for 2023
CNCF's certification expiration period will change to 24 months starting April 1st, 2024.
Sysdig 2024 Cloud Native Security and Usage Report
Links from the interviewMadhav Jivrajani
Twitter/X
LinkedIn
Priyanka Saggu Interview
Stale reads Twitter/X thread by Madhav
"Kubernetes is vulnerable to stale reads, violating critical pod safety guarantees" - GitHub Issue tracking the stale reads CAP Theorem issue
CMU Wasm Research Center
"A CAP tradeoff in the wild" blog by Lindsey Kuper
"Reasoning about modern datacenter infrastructures using partial histories" research paper
The Kubernetes Storage Layer: Peeling the Onion Minus the Tears - Madhav Jivrajani, VMware
KEP-3157: allow informers for getting a stream of data instead of chunking.
KEP 2340: Consistent Reads from Cache
Journey Through Time: Understanding Etcd Revisions and Resource Versions in Kubernetes - Priyanka Saggu, KubeCon NA 2023
Kubernetes API Resource Versions documentation
-
Guest is Bill Mulligan. Bill is Community Pollinator at Isovalent working on Cilium and eBPF. We learned how to properly pronounce Isovalent and what it actually means. We also spoke in depth about eBPF, Cilium, network function in Kubernetes and more.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekThe Kubernetes legacy Linux package repositories are going away in January 2024
Kubernetes 1.29 is now available on GKE in the Rapid Channel
The Vmware Tanzu Application Catalog is fully compliant with the SLSA Level 3
AWS extended support for Kubernetes minor versions pricing update
The Kubernetes Contributor Summit Paris CFP is Open, closes Feb 4th
KubeCon and CloudNativeCon EU 2024 co-located events agenda is live
The Cloud Native Glossary is now available in French
Blixt a new experimental LoadBalancer based on the Gateway API and eBPF
Links from the interviewBill Mulligan:
LinkedIn
Twitter/X
Covalent bonds on Wikipedia
Isovalent Hybridization on Wikipedia
Isovalent company site
BPF - Berkeley Packet Filtering
eBPF project site
Fast by Friday: Why eBPF is Essential - Brendan Gregg
GKE Dataplane V2
Cilium project site
Hubble documentation
Cilium Service Mesh
Cilium annual report
Cilium Certified Associate (CCA)
CCA Study Guide from Isovalent on GitHub
Istio Certified Associate (ICA)
Certified Kubernetes Administrator (CKA)
Certified Kubernetes Application Developer (CKAD)
Kubernetes and Cloud Native Associate (KCNA)
Resources to prepare for the CCA certification
Isovalent library
The World of Cilium
Cisco acquired Isovalent
Developing eBPF Apps in Java
BGP in eBPF
-
This week’s guests are Johnny Horvi and Frode Sundby from NAVs (Norwegian Labour and Welfare Administration) platform team. We talked about NAIS. A kubernetes-based team centric platform aiming at providing the tools needed to deploy and operate apps easily.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekKubernetes 1.29 features:
https://kubernetes.io/blog/2023/12/14/cloud-provider-integration-changes/
https://kubernetes.io/blog/2023/12/20/contextual-logging-in-kubernetes-1-29/
https://kubernetes.io/blog/2023/12/19/pod-ready-to-start-containers-condition-now-in-beta/
https://kubernetes.io/blog/2023/12/19/kubernetes-1-29-taint-eviction-controller/
https://kubernetes.io/blog/2023/12/18/read-write-once-pod-access-mode-ga/
https://kubernetes.io/blog/2023/12/18/kubernetes-1-29-feature-loadbalancer-ip-mode-alpha/
https://kubernetes.io/blog/2023/12/15/kubernetes-1-29-volume-attributes-class/
https://kubernetes.io/blog/2023/12/15/csi-node-expand-secret-support-ga/
Kubernetes 1.29 release lead Interview
Cisco acquired Isovalent
Cilium 2023 Annual report
KubeCon and CloudNativeCon Paris 2024 Hackathon
https://www.cncf.io/blog/2023/12/20/kubecon-cloudnativecon-europe-hackathon-challenges-brought-to-you-by-the-united-nations/
https://events.linuxfoundation.org/kubecon-cloudnativecon-europe/
https://unite.un.org/
https://sdgs.un.org/goals
OpenFeature incubated as a CNCF project
Links from the interviewGuests:
Johnny Horvi
Frode Sundby
Nais
Nais.io
Twitter/X
Github
NAV
JBoss
IBM Websphere
Apache Mesos
Links from the post-interview chatNais on GitHub
-
In this episode we interviewed Priyanka Saggu, Kubernetes v1.29 release lead and SIG ContribEx Tech Lead. We spoke about the release, the new features and enhancements, and more.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekKyverno completes third-party security audit
Google Deepmind Introduction to Gemini
Google launches Gemini - The Verge
Linux Foundation Newsletter: November 2023
High Performance Software Foundation (HPSF) Founding Announcement
App Defense Alliance joins Joint Development Foundation under the Linux Foundation
Open Source Summit North America 2023 CFP (closes January 14, 2024)
Links from the interviewKubernetes v1.29 release information page on k8s.dev
Removals, Deprecations, and Major Changes in Kubernetes 1.29
Release Blog - Kubernetes v1.29: Mandala
Breaking changes
KEP 2395: Removing In-Tree Cloud Providers
(SIG Cloud Provider, Beta)Kubernetes v1.28 on the Kubernetes Podcast from Google - discussion of removal of in-tree storage plug-ins
Major ChangesKEP 1287: In-Place Update of Pod Resources
(SIG Node, Alpha)Support in-place Pod vertical scaling in VPA
KEP 753: Sidecar Containers
(SIG Node, Beta)Stable
KEP 3299: KMS v2 Improvements OR KMSv2
(SIG Auth)SIG Etcd on the Kubernetes Podcast from Google
KEP 2485: ReadWriteOncePod PersistentVolume Access Mode
(SIG Storage, SIG Scheduling)KEP 727: Kubelet Resource Metrics Endpoint
(SIG Instrumentation)“The Kubelet Summary API is a source of both Resource and Monitoring Metrics. Because of it’s dual purpose, it does a poor job of both.”
Beta
KEP 2799: Reduction of Secret-based Service Account Tokens
(SIG Auth)Alpha
KEP 3866: nftables kube-proxy backend
(SIG Network)[KCSNA 2023] Iptables the end of an era - Dan Winship, Antonio Ojea
Links from the post-interview chatKaslin’s blog about “Out of Tree” Kubernetes
In this episode we interviewed Priyanka Saggu, Kubernetes v1.29 release lead and SIG ContribEx Tech Lead. We spoke about the release, the new features and enhancements, and more.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekKyverno completes third-party security audit
Google Deepmind Introduction to Gemini
Google launches Gemini - The Verge
Linux Foundation Newsletter: November 2023
High Performance Software Foundation (HPSF) Founding Announcement
App Defense Alliance joins Joint Development Foundation under the Linux Foundation
Open Source Summit North America 2023 CFP (closes January 14, 2024)
Links from the interviewKubernetes v1.29 release information page on k8s.dev
Removals, Deprecations, and Major Changes in Kubernetes 1.29
Release Blog - Kubernetes v1.29: Mandala
Breaking changes
KEP 2395: Removing In-Tree Cloud Providers
(SIG Cloud Provider, Beta)Kubernetes v1.28 on the Kubernetes Podcast from Google - discussion of removal of in-tree storage plug-ins
Major ChangesKEP 1287: In-Place Update of Pod Resources
(SIG Node, Alpha)Support in-place Pod vertical scaling in VPA
KEP 753: Sidecar Containers
(SIG Node, Beta)Stable
KEP 3299: KMS v2 Improvements OR KMSv2
(SIG Auth)SIG Etcd on the Kubernetes Podcast from Google
KEP 2485: ReadWriteOncePod PersistentVolume Access Mode
(SIG Storage, SIG Scheduling)KEP 727: Kubelet Resource Metrics Endpoint
(SIG Instrumentation)“The Kubelet Summary API is a source of both Resource and Monitoring Metrics. Because of it’s dual purpose, it does a poor job of both.”
Beta
KEP 2799: Reduction of Secret-based Service Account Tokens
(SIG Auth)Alpha
KEP 3866: nftables kube-proxy backend
(SIG Network)[KCSNA 2023] Iptables the end of an era - Dan Winship, Antonio Ojea
Links from the post-interview chatKaslin’s blog about “Out of Tree” Kubernetes
-
This episode Kaslin went to KubeCon North America In Chicago. She spoke to folks on the ground, asked them about their impressions of the conference, and collected a bunch of cool responses.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekGoogle researchers discover 'Reptar,’ a new CPU vulnerability
Reptar by Tavis Ormandy
Tim Hockin: Kubernetes Needs a Complexity Budget
Kubernetes' Tim Hockin on a decade of dominance and the future of AI in open source
Keynote: A Vision for Vision - Kubernetes in Its Second Decade - Tim Hockin
Open and Secure: A Manual for Practicing Thread Modeling to Assess and Fortify Open Source and Security
Announcing our latest book release: a comprehensive security guide to assess and fortify open source security
Links from the interviewCNCF LLM Starter Pack
Crossplane
Web Assembly
Intro to Kubernetes Gateway API
Links from the post-interview chatSIG ContribEx Comms Team Rap by Bart Farrell
-
Jesper Larsson is a Freelance PenTester. Jesper works with a hacker community called Cure53. Co-organizes SecurityFest in Gothenburg, Sweden. Hosts Säkerhetspodcasten or The Security Podcast. Jesper is also a Star on Hackad, a Swedish TV Series about hacking.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekKubernetes Removals, Deprecations, and Major Changes in Kubernetes 1.29
Introducing SIG etcd
etcd, with Marek Siarkowicz and Wenjia Zhang (The Kubernetes Podcast from Google)
WebAssembly (WASM) and OpenShift: A Powerful Duo for Modern Applications
Linux Foundation Events
Pass the torch in ContribEx #7603
Links from the interviewCure53 Hacker Community
Säkerhetspodcasten
Hackad TV Show on IMDB
SecurityFest Gothenburg
Falco by Sysdig
Wolfi by Chainguard
The Untold Story of NotPetya, the Most Devastating Cyberattack in History
Links from the post-interview chatThe Untold Story of NotPetya, the Most Devastating Cyberattack in History
-
Fabian Kammel is a Security Architect at ControlPlane, where he helps to make the (cloud-native) world a safer place. In his career, he continuously worked to bring hardware security and cloud-native security closer together. His past projects include:
* A cloud-native PKIs for on-road vehicle services secured by enterprise HSMs
* An always-encrypted Kubernetes distribution that harnesses the power of Confidential Computing
* And more recently securing SPIFFE-based machine identities via hardware attestation.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
Links from the interviewConfidential Computing Blog from kubernetes.io
Confidential Computing Consortium
Confidential Computing Whitepaper
Intel SGX Enclave
Swap Memory with Kubernetes in Beta in 1.28
Hardware Security Modules
Trusted Platform Modules (TPM)
Envelope Encryption
Confidential Computing Concepts - Confidential Virtual Machine
AMD Secure Encrypted Virtualization (AMD SEV)
AMD Secure Encrypted Virtualization - Secure Nested Paging (AMD SEV SNP)
Trusted Computing Base (TCB)
Remote Attestation
Confidentiality, Integrity, and Availability: The CIA Triad
Intel SGX Enclaves
Confidential Containers (CoCo)
Katacontainers
AWS Firecracker
-
Guests are Marek Siarkowicz , Senior Software Engineer in Google Cloud, Tech Lead of SIG-etcd AND Wenjia Zhang, Engineering Manager in Google Cloud, Co-Chair of SIG-etcd, Google. We spoke about the project, the recent change to become a Special Interest Group and how to learn etcd.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekCo-host this week is Mofi Rahman [X, LinkedIn]. Cloud Developer Advocate at Google
Karpenter graduated to Beta
The Kubernetes SIG Network announced release 1.0 of the Gateway API
Ingress2gateway new CLI to migrate from Ingress to Gateway
The Call for Proposals for KubeCon EU 2024 will close on Nov 26, 2023
Links from the interviewetcd
Meaning of etcd
etcd history from CoreOs
Raft paper
On the Hunt for Etcd Data Inconsistencies by Marek Siarkowicz - [youtube]
Lessons Learned From Etcd the Data Inconsistency Issues by Marek Siarkowicz - [youtube]
The first pancake rule
etcd as a Kubernetes sig
The Case for SIG-ifying etcd
CNCF Contributor License Agreements (CLA)
Kubernetes Prow
Contributor Experience Special Interest Group
Kubernetes Watch
Go Serialization and Deserialization
Cilium with external etcd
Certified Kubernetes Administrator
etcd mentorship program
etcd @kubecon NA 2023
Links from the post-interview chatKubernetes considerations for large clusters
Operating etcd clusters for Kubernetes
Kueue
etcd on the podcast
The Heartbleed Bug
XKCD meme about dependency
-
WasmCon took place in BELLEVUE, WASHINGTON on Sept 6-7 2023. Kaslin and Mia from our advocacy team went down there and spoke to some folks at the conference to get their impression of the event.
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekMia Villaseñor:
Twitter/X
LinkedIn
Cilium Graduated
Docker AI apps tools
Kubernetes steering committee election results
CRI-O moved to Kubernetes owned repository
CNCF TOC voted to archive the SMI project
Links from the interviewWasmCon 2023
Guests
Dan Wilson
Hood Chatham
Brendan Irvine-Broque
Josh Berkus
Kevin Zheng
Sid Hussmann
Dawn Parzych
Daiki Akasaka
Radu Matei
Dan Mihai Dumitriu
Russell Ashi
Chris Madison
Brooks Townsend
Open Policy Agent
V8
Gapfruit OS
WASI Capabilities
Trusted Compute Group
Trusted Platform Module (TPM)
Jnode
Midokura WASM Runtime
Cosmonic Cloud
CNCF WasmCloud
Wasm Components Model
WASI
WasmTime
SQLite in Wasm talk at WasmConAI and Wasm talk at WasmCon
Envoy and Wasm
The WIT format
Cloudflare RU workers
Wasm and Kubernetes
Wasm and Kubernetes case study
Doom on Cloudflare workers with Wasm
Wasm and bosch by Emily Ruppel
Dynamic Linking Python
Dynamic Linking in Wasm from Wasm I/O 23
Links from the post-interview chatPodcast episode#208 with Phil estes
Podcast episode#203 with Justin Cormack
-
This week we explore what’s new in Istio with core maintainers John Howard and Keith Mattix
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: [email protected]
- twitter: @kubernetespod
News of the weekAnnouncing Linkerd 2.14: Improved enterprise multi-cluster, Gateway API conformance, and more!
Amazon to invest up to $4 billion in AI startup Anthropic
KubeCon EU 2024 CFP is open until November 26th
CNCF Security Slam
NEW Certification: Istio Certified Associate (ICA)
npm packages caught exfiltrating Kubernetes config, SSH keys
Links from the interviewKubernetes Native Sidecars in Istio (Blog from Istio)
Kubernetes v1.28: Introducing native sidecar containers
Argo Workflows
Apache Airflow
Envoy Proxy
Istio Ambient Mesh
Introducing Rust-Based Ztunnel for Istio Ambient Service Mesh
eBPF
Kernel TLS
HTTP Based Overlay Network Environment (HBONE)
KubeCon EU 2023: “Future of Service Mesh - Sidecar or Sidecarless or Proxyless?” - Idit Levine & Yuval Kohavi, Solo.io; Keith Mattix II, Microsoft; Eric Van Norman, IBM; John Howard, Google
Istio Ambient Waypoint Proxy Made Simple
kiali.io
Kubernetes Gateway API (Istio)
Getting Started with Istio and Kubernetes Gateway API
Istio Desitination Rule
Announcing Istio's graduation within the CNCF
Istio sails into the Cloud Native Computing Foundation (CNCF Blog)
- Visa fler