The “Inside Argo: Automating the Future” movie has been announced; here comes its trailer. This documentary covers the story of the Argo project and features interviews from its founders and current maintainers, the representatives of Akuity, CNCF, CodeFresh by Octopus Deploy, Intuit, and Red Hat. The world premiere will happen during KubeCon NA 2024 on November 14.

P.S. Previously, you could’ve seen documentaries about other significant Cloud Native projects:
- “Kubernetes: The Documentary”: Part 1 (24:54) and Part 2 (31:18)
- “Prometheus: The Documentary” (27:00)
- “Inside Envoy: The Proxy for the Future” (31:49)

#gitops #video #news

Let's start this week with another bunch of interesting Kubernetes-related articles recently spotted online:

1. "Prometheus Architecture Explained: Key Components and Design" by Rayan Slim, Kubernetes Training.

"This article will dive into the Prometheus architecture and explore how its components work together to create a powerful cloud-native monitoring solution."

2. "Replacing StatefulSets With a Custom K8s Operator in Our Postgres Cloud Platform" by Andrew Charlton, Timescale.

"... working with StatefulSets was becoming increasingly painful and preventing us from innovating. In this blog post, we’re sharing how we replaced StatefulSets with our own Kubernetes custom resource and operator, which we called PatroniSets, without a single customer noticing the shift. This move has improved our stability considerably, minimized disruptions to the user, and helped us perform maintenance work that would have been impossible previously."

3. "What is Helm in Kubernetes? A complete guide" by Jake Page & Philip Miglinci, Glasskube.

"Helm architecture; Why use Helm? How does Helm work? What is a Helm chart? Helm tutorial to create a chart and validate it; FAQ’s."

4. "Deploying My Site on Kubernetes with GitHub Actions and ArgoCD" by JKHZ.

"I set up the CI/CD pipeline to automatically build and deploy changes to my site. Tools used: GitHub Actions; Argo; Docker; Kubernetes (K3s); Hetzner as the cloud provider for hosting the Kubernetes cluster."

5. "Enhance Argo CD Observability: A Step-by-Step Guide to Integrating Prometheus Metrics into the UI" by Christian Huth.

"In this guide, we’ll walk you through the steps to set up Prometheus metrics within the Argo CD UI. We’ll cover setting up Prometheus to collect metrics, setting up the Argo CD Metrics Server to connect Argo CD with Prometheus, configuring Argo CD to retrieve metrics from the Argo CD Metrics Server. By the end of this integration, you’ll have a robust monitoring system that provides key insights into your Kubernetes applications."

6. "Automating CI/CD with Tekton: Setting Up GitHub Webhooks for PR Pipelines and automating test cases" by Ambesh Gaunker.

"This Tekton CI/CD pipeline is now ready to automate your GitHub PR workflows. The pipeline listens to GitHub webhooks for PR events and executes the pipeline, with status updates on GitHub showing if the pipeline succeeds or fails."

Enjoy reading & sharing! 🙌

#articles

If you often need to copy files from Kubernetes to work with them locally — this tool might come handy.

pv-mounter is a simple solution to mount Kubernetes PVs (Persistent Volumes) locally using SSHFS. It was born to automate the author’s need to copy files from his K8s cluster at home. Here’s what pv-mounter does:

- Creates a Pod with an SSH daemon, binds it to the existing PVC, creates a port-forward, and mounts the volume locally via SSHFS.
- Supports RWX and RWO volumes. If the RWO volume is mounted already, an ephemeral container and a reverse SSH tunnel are used.
- Comes with security in mind by using temporary SSH keys and minimal privileges for Pods.

▶️ GitHub repo

#tools #storage

Since we covered Perses joining CNCF Sandbox a month ago, several other additions have happened. Here’s a list of new projects recently accepted to Sandbox:

1. Ratify — a framework to integrate scenarios that require the verification of reference artifacts.
Originated in 2021. Written in Go. Sponsored by Deis Labs (Microsoft). 222 ⭐️ Site; GitHub.

2. HAMi — an all-in-one tool designed to manage heterogeneous AI computing devices (from NVIDIA, Cambricon, Hygon, etc.) in Kubernetes.
Originated in 2021. Written in Go. Sponsored by 4paradigm, DaoCloud, Huawei Cloud, and Rise Union. 817 ⭐️ Site; GitHub.

3. Sermant — a proxyless service mesh based on Java bytecode enhancement technology.
Originated in 2021. Written in Java. Sponsored by Huawei. 1214 ⭐️ Site; GitHub.

4. youki — an implementation of container runtime (OCI runtime-spec) in Rust.
Originated in 2021. Written in Rust. Sponsored by Microsoft, Docker, and Red Hat. 6267 ⭐️ Site; GitHub.

5. OpenEBS — a container-native storage platform for stateful persistent applications on Kubernetes. This project has been a Sandbox project since 2019, but then moved to the archive in Feb 2024; now it’s in Sandbox again.
Originated in 2017, Written in Go. Sponsored by DataCore. 8949 ⭐️ Site; GitHub.

6. KAITO — an operator that automates the AI/ML model inference or tuning workload in Kubernetes.
Originated in 2023. Written in Go. Sponsored by Microsoft. 416 ⭐️ GitHub.

7. Kmesh — a high-performance and low overhead service mesh data plane based on eBPF and programmable kernel.
Originated in 2023. Written in Go and C. Sponsored by Huawei. 450 ⭐️ Site; GitHub.

8. OVN-Kubernetes — a robust networking solution for Kubernetes clusters with Open Virtual Networking and Open vSwitch at its core.
Originated in 2016. Written in Go. Sponsored by Red Hat and NVIDIA. 825 ⭐️ Site; GitHub.

#tools #news #cncfprojects

Here comes our newest digest of the prominent software updates in the Cloud Native ecosystem!

1. KubeBlocks, a control plane to manage databases and other stateful apps on K8s, released the v0.9.1 version, adding support for Loki, Minio, and RabbitMQ. It also introduced PITR and key-based recovery for Redis, backups for ZooKeeper, the ability to start and stop clusters via Cluster API, and improved system recovery and resource management.

2. Altinity Kubernetes Operator for ClickHouse has seen its 0.24 release with fully rewritten ClickHouse Keeper support. It also got an updated Grafana dashboard and now allows managing the PDB behaviour (pdbMaxUnavailable) as well as adding Pod labels in the Helm chart.

3. Azure Service Operator that helps provision Azure resources was updated to v2.10.0. It came with added support for various new resources (including FluxConfiguration for KubernetesConfiguration and ApplicationSecurityGroup for Network), more flexible Helm chart configuration, and other improvements.

4. Kuma, “the multi-zone service mesh for containers, Kubernetes and VMs” (a CNCF Sandbox project), released its 2.9.0 version. The notable changes include a new way to represent services and manage traffic (via MeshService and MeshMultiZoneService resources), a better approach to managing policies by service owners, selective mTLS with a new MeshTLS policy, and more robust transparent proxying.

5. wasmCloud, which enables building, managing, and scaling Wasm apps across clouds, K8s, and edge (a CNCF Sandbox project), was updated to v1.4.0. It relies on the WASI 0.2.2 standard, supports new wasi:config/store, and adds support for wasmCloud-named things for packages.

6. Kata Containers 3.10.0 was released with CDI (Container Device Interface) support in runtime-rs, support for confidential sealed secrets as volume, support for virtio-scsi devices and network device hotplugging in QEMU, and dropped support for the ACRN hypervisor.

7. ko, a container image builder for Go applications (a CNCF Sandbox project), was updated to v0.17.0. This release added a few features, such as setting annotations on image indexes and manifests and specifying the default user for images.

#news #releases

Flatcar became the most recent addition to the CNCF projects, joining it in the Incubating status.

Flatcar Container Linux is a minimal operating system for Kubernetes, which is closely integrated with Cluster API. It originated as a CoreOS Container Linux derivative and was created in Kinvolk (acquired by Microsoft in 2021).

As Andrew Randall (ex-Chief Commercial Officer of Kinvolk) anticipates, “the Flatcar project's entire raison d'être is to provide a vendor-neutral foundation for cloud native applications, and to enable innovation and collaboration on an open, cloud native operating system platform that is governed _by the community, for the community_.”

P.S. In this Reddit comment, you can find a nice comparison of Flatcar vs. Talos.

#news #cncfprojects

We’ve been witnessing the emergence of more AI assistants lately, including those related to DevOps. Here’s a new tool focusing on troubleshooting Kubernetes.

Klama was created to help troubleshoot DevOps-related issues by interpreting user queries and suggesting and executing relevant commands. Currently, it comes with very basic features:

- Interpreting queries, suggesting and executing relevant commands for better investigation.
- Compatibility with any server implementing OpenAI API. It was tested with OpenAI models, self-hosted models using vLLM, Amazon Bedrock models, and Azure AI.
- Session price calculation based on specified prices per 1K input/output tokens.

▶️ GitHub repo
📢 Reddit announcement

#tools #genai

Here goes our latest bunch of interesting Kubernetes-related articles recently spotted online:

1. "Longhorn Backup and Restore" by Aleksandr Baryshnikov.

"Article breaks down using Longhorn (version 1.7) for backups, self-hosting, and recovery. It’s for seasoned DevOps and SysAdmin folks who like doing things themselves. You’ll find a step-by-step guide on setting up and restoring backups with Longhorn, Velero, and GitOps. The goal is to show you a tried-and-true setup for getting your backups and restores working smoothly."

2. "A Practitioner's Guide to Wide Events" by Jeremy Morrell.

"Adopting Wide Event-style instrumentation has been one of the highest-leverage changes I’ve made in my engineering career. The feedback loop on all my changes tightened and debugging systems became so much easier. [..] where do you even start? What data should I add? We’ll cover how to approach this in tooling [using an OpenTelemetry SDK] and code, an extensive list of attributes to add, and I’ll respond to some frequent objections that come up when discussing this approach."

3. "How we avoided an outage caused by running out of IPs in EKS" by Fabián Sellés, Adevinta.

"My team maintains the cluster and a myriad of services that support applications from observability to security passing through networking. One evening, we received a page that some DaemonSets were failing. After logging on to the server and checking the pods status, our worst fear was confirmed as we read the error:

name=“aws-cni” failed (add): add cmd: failed to assign an IP address to container

4. "The Kubernetes Introduction I Wish I Had When I Started: A Complete Guide" by Saquib Khan.

"This article is the in-depth guide to Kubernetes that I wish I had when I first started out, covering the concepts, history, and examples that will help you get a strong foundation. In this guide, we’ll take you step-by-step through the key concepts of Kubernetes, its architecture, and how it solves the challenges of modern software deployment. By the end, you’ll have a solid grasp of what Kubernetes is, how it works, and why it’s the cornerstone of cloud-native applications today."

5. "Kubernetes Resource Model, Controller Pattern and Operator SDK refresher" by Vibhav Bobade.

"I have been writing operators for a while, but along the way I have forgotten what SharedInformers, Informers etc. are. As a refresher I want to understand what these are and understand this more intuitively so that I never forget it. Anything that I might not have mentioned here is something that I already know or any beginner or intermediate Kubernetes engineer would. The notes given below are a mix of notes from Eddie Zaneski's "Understanding the Kubernetes Resource Model and Controller Pattern" talk and a bit of personal exploration on these topics."

6. "Install Kubernetes from Binaries".

"These are the notes I took while learning binary installation of K8s. I installed 1 Master and 2 Nodes. I didn’t use scripts or HA during installation. These notes are suitable for: cultivating a practical understanding of various K8s components; installing a minimalist environment."

Enjoy reading & sharing! 🙌

#articles

OpenCost became the latest CNCF Incubating project.

OpenCost is a FinOps tool used for cost monitoring for Kubernetes workloads and related cloud expenses. The project was originally developed by Kubecost, the company offering an eponymous commercial product based on OpenCost. Two months ago, Kubecost announced being acquired by IBM.

#news #finops #cncfprojects

CNCF announced the list of all KCDs (Kubernetes Community Days) events for the upcoming 2025 year.

This announcement followed a recent update of the KCD program, which included a limitation on the number of events and their participants, as well as required the organisers to apply their submissions for 2025 by this September.

30 KCDs for 2025 were selected (out of 61 submissions) and confirmed. Here they are:

- March: Beijing (China); Guadalajara (Mexico); Rio de Janeiro (Brazil);
- April: Budapest (Hungary); Chennai (India); Auckland (New Zealand);
- May: Helsinki (Finland); San Francisco, Austin, and New York (USA); Seoul (South Korea); Istanbul (Turkey); Heredia (Costa Rica);
- June: Bratislava (Slovakia); Bangalore (India); Antigua Guatemala (Guatemala); Nigeria;
- July: Utrecht (The Netherlands); Taipei (Taiwan); Lima (Perú);
- August: Bogota (Colombia);
- September: Washington DC (USA); Sofia (Bulgaria); San Salvador (El Salvador); Porto (Portugal);
- July-September: Hangzhou (China);
- October: Warsaw (Poland); Colombo (Sri Lanka); Edinburgh (UK);
- December: Geneva (Switzerland).

P.S. A few prominent events from previous years, such as KCD Munich and KCD Zürich, are missing. We should expect similar offline events in these locations under their new names (not KCDs).

#events #news

Two other events-related news:

1. KubeCon + CloudNativeCon North America 2024 is around the corner: it will start in a week (November 12-15)! You can find the full schedule here. Late tickets are still on sale, the keynotes will be live-streamed, and all recordings will be uploaded to YouTube later. The Kube Events website also made a special page listing all social events and parties for this KubeCon.

2. DevOps Stage 2024 is a free online conference on cloud architecture and DevOps. It will happen on November 22nd and feature 16 sessions in 3 streams with speakers from Grafana Labs, Percona, YugabyteDB, Relex, BWI GmbH, and more. Find all the details and register to join it here.

#events #news

Here comes our newest digest of the prominent software updates in the Cloud Native ecosystem!

Release Spotlight: Vitess v21.0.0

Vitess, a database clustering system for horizontal scaling of MySQL (a CNCF Incubating project), announced its v21 release last week. It came with enhanced query compatibility thanks to two experimental features: atomic distributed transactions and recursive Common Table Expressions (CTEs).

This release also brought a reference table materialisation, an experimental mysqlshell engine to run logical backups and restores, a new vexplain trace command to get deeper insights into query execution paths, a new vexplain keys feature to analyse query interactions with schema, multi-metric support in the tablet throttler, and vitess-operator v2.14.0 with Kubernetes v1.31 support and the ability to horizontally scale the VTGate deployment using HPA.

Other noticeable updates in the Cloud Native space:

1. Testcontainers for Go, a Go package for dealing with container-based dependencies for automated tests, was updated to v0.34.0, featuring 5 new modules (etcd, yugabytedb, meilisearch, dynamodb-local, and databend) and a few other improvements.

2. Apache Pulsar, a distributed pub-sub messaging platform, has recently seen its major v4.0.0 release. New features include an enhanced Key_Shared subscription implementation, better QoS controls for multi-tenant deployments, rate limiting for capacity management, and new Alpine-based images with more performant Java 21 runtime.

3. Kapitan, a configuration management tool for Kubernetes, Terraform and more, has released v0.34.0 with experimental support for Reclass Rust and OmegaConf inventory backends, Pydantic-based inventory validation, and support for Python 3.12.

4. Kyverno, a policy engine for Cloud Native platforms (a CNCF Incubating project), released its 1.13 with over 700 changes. They introduce support for verifying container image signatures in the sigstore bundle format, exceptions for ValidatingAdmissionPolicies, a new concept of assertion trees for validation rules, reports for Mutate and Generate rules, custom data in policy reports, removal of wildcard view permissions, and much more.

5. Harbor (a CNCF Graduated project) got its own command-line tool with the release of Harbor CLI v0.0.1. It works on Linux, macOS, and Windows and allows you to manage projects, registries, repositories, artifacts, and users.

6. werf, a CLI tool for implementing CI/CD in Kubernetes (a CNCF Sandbox project), was updated to v2.11.0, which added crane and tzdata to the werf images, werf images for linux/arm64, improved AWS ECR support, and better consistency throughout various commands.

#news #releases

If you’ve ever been puzzled by a need to perform your cloud assets inventory, this tool may greatly help.

cnquery is a CLI tool for querying your entire IT infrastructure based on the cloud instances, bare-metal servers, VMs, containers, and everything related. Here’s what it offers:

- Obtaining information from dozens of targets. They include Linux/macOS/Windows hosts, AWS/Azure/Google Cloud, vSphere/Vagrant, Terraform, Ansible, GitLab/GitHub, and more.
- Vast support for Cloud Native targets: container images and running containers, container registries, Dockerfiles, Kubernetes clusters/nodes/workloads/manifests.
- An opportunity to create your own providers for other resources you have for inventory.
- Running standalone or multiple queries using the MQL language + an interactive shell with auto-completion.
- Generating SBOMs (CycloneDX or SPDX) for given assets.

Language: Go | License: BUSL | 312 ⭐️

▶️ GitHub repo

#tools

KubeCon NA is approaching, and social media is already packed with related posts of the Cloud Native crowd travelling there, meeting each other, etc. Cloud Native Rejekts is the official pre-party featuring lots of great talks that didn’t make it to KubeCon itself. Moreover, these talks are streamed online and available for offline watching afterwards.

Here’s the list of yesterday’s (Nov 10) talks with the links to relevant video moments:

- “Welcome to Cloud Native Rejekts NA 2024!” by Benazir Khan
- “Malicious Compliance Automated: When You Have 4000 Vulnerabilities and only 24 Hours Before Release” by Duffie Cooley, Kyle Quest
- “Ten years of Kubernetes: Building the future” by Lachlan Evenson
- “Images Bite Back -- Dealing with Day 2 Build Issues” by Adrian Mouat
- “A Day in the Life of Kubernetes Release with Tools, Challenges, and Operations” by Meha Bhalodiya
- “Building an Open Source Observability Stack from Raw Telemetry” by Joshua Lee
- “Debug Like a Pro: Ephemeral Containers and Wolfi Linux in Action” by Chad Crowell, Natalie Lunbeck
- “Integrating eBPF superpowers into your observability tooling” by Mauricio Vasquez Bernal, Chris Kuehl
- “Meet the New Kid in the Sandbox - Integrating Visualization with Prometheus” by Eric D. Schabell
- “From Fragile to Resilient: Using Admission Policies to Strengthen Kubernetes” by Marcus Noble
- “Cloud Native Nix!” by Leigh Capili
- “Virtual Machines, Containers, and WebAssembly Face-off” by Danilo (Dan) Chiarlone, Jiaxiao (Joe) Zhou
- “Platform Engineering Loves Security: Shift Down to Your Platform, not Left to Your Developers!” by Mathieu Benoit, Maxime Coquerel

+ You can find 7 more yesterday' talks from another room here.

The schedule for today (Nov 11) is available here. These talks will be streamed via the same YouTube channel. Enjoy!

#video #events

Here comes our newest digest of the prominent software updates in the Cloud Native ecosystem!

Release Spotlight: containerd 2.0.0

containerd, a well-known container runtime (a CNCF Graduated project), has released its second major version. It brought numerous new features, both stable and experimental. Now, the Transfer service and Sandbox service are stable; NRI (Node Resource Interface), CDI (Container Device Interface), and sandboxed CRI (Container Runtime Interface) are enabled by default.

containerd v2 also features image verifier plugins (for policy enforcement at the image’s pull time), OpenTelemetry environment variable configuration support for built-in tracing plugin, CRI support for user namespaces and recursive read-only mounts. Find more details on the release in the docs and a basic migration guide in this article.

Other significant updates in the Cloud Native space:

1. Open Policy Agent (OPA), a general-purpose policy engine (a CNCF Graduated project), released its v0.70.0, featuring a new optimised read mode for the default in-memory store and a few other improvements.

2. Crossplane, a framework for building Cloud Native control planes (a CNCF Incubating project), delivered v1.18.0 last week. It came with two new alpha features, dependency version upgrade support and package image signature verification with cosign, as well as support for package installation with digests, authenticating private registries, converting to function-environment-configs, and passing credentials to functions in the render function.

3. Envoy Gateway (a CNCF Graduated project) v1.2.0 was released last week, bringing full compatibility with Gateway API v1.2.0. It also introduced the experimental standalone (host deployment) mode, active-passive failover, Response Override and RequestTimeout in BackendTrafficPolicy, session persistence in HTTPRoute, direct response and path regex rewrites in HTTPRouteFilter, JWT claims-based authorisation, a Prometheus metrics endpoint, and more.

4. Istio (a CNCF Graduated project) 1.24.0 arrived with general availability of the ambient mode. It got various enhancements while its core features (ztunnel, waypoints, and APIs) were declared stable. This release also improved the automatic retries, which are now available not only on the client sidecar but on the server sidecar as well.

5. Rook, a Cloud Native storage orchestrator for Kubernetes (a CNCF Graduated project), v1.15.5 introduced an experimental support for pool placements, allowing you to override where bucket data will be stored. Other changes include scheduling OSDs on unschedulable nodes and key rotation support for Vault KMS.

P.S. As a small bonus, the "Sneak peek of Kubernetes v1.32" article was published recently, covering the changes we can expect in the next K8s release (scheduled for December 11th).

#news #releases

A few important news related to the CNCF projects from KubeCon NA 2024 that is happening these days:

1. Dapr (Distributed Application Runtime) is a Graduated project now. This project was first released in 2019 by Microsoft and accepted into the CNCF Incubator in November 2021. Since then, it had 3,700+ individual contributors from 400+ organisations.

2. cert-manager is a Graduated project now. It was created in 2017 at Jetstack and accepted into the CNCF Sandbox in November 2020. It has 450+ contributors now.

3. wasmCloud is an Incubating project now. It emerged in 2020 in Cosmonic and was accepted into the CNCF Sandbox in July 2021. Currently, it has 100+ regular contributors representing 73 companies.

4. The Project Journey Report for Cilium was released. It tells the story of this project since 2016 in numbers and charts, highlighting its growth with over 500,000 total contributions and 4000+ contributors.

#news #cncfprojects

Not visiting KubeCon NA 2024? It has more than 9200 attendees, but don’t feel FOMO if you’re not one of them. Here’s what we have online to stay informed:

- Keynote livestream. The next sessions are on Thu (Nov 14) at 9:00–10:30 AM MST and Fri (Nov 15) at 9:00–10:30 AM MST.
- KubeCon Day One wrap-up in the CNCF blog, which covers the keynotes and lists the first announcements.
- All Cloud Native Rejekts talks from both days.
- The first videos are already appearing on the CNCF YouTube channel as well. Find dozens of talks from the co-located events (ArgoCon, Observability Day, and AI Day) as well as a short Day 1 highlight.

P.S. Obviously, endless social media posts from the event participants are also here. Have a look at the Bluesky feed (perhaps switch to the Latest one) as a vivid example.

#events #news #video

Big software releases from/during KubeCon NA 2024:

1. Jaeger v2, featuring a new architecture based on the OpenTelemetry Collector framework. Announcement; GitHub release.

2. KubeVirt v1.4, bringing network hotplug, common instance types, NUMA topology support, and GPU assignment to GA. Announcement; GitHub release.

3. Keycloak 26 with full support for organisations, TLS server certificates hot-reloading, persistent sessions storage, advanced high availability, and OpenTelemetry tracing. Announcement; GitHub release (note there’s v26.0.5 available already).

4. Prometheus 3.0, introducing new UI, Remote Write 2.0, native histograms, and better OpenTelemetry protocol support. Announcement; GitHub release.

#news #releases #cncfprojects

The full “Inside Argo: Automating the Future” documentary lasts 32 minutes and was uploaded to YouTube just 4 hours ago. Enjoy watching it here.

#video #gitops

Did you know that the CNCF YouTube channel features 300+ videos from KubeCon + CloudNativeCon NA 2024 already? Enjoy watching it, do your best not to be overwhelmed, and share with the community! 😅

KubeCon NA 2024 playlist →

#video #events

Here goes our latest bunch of interesting Kubernetes-related articles recently spotted online:

1. "KubeCon NA 2024 wrap-up: Don’t miss these major CNCF projects’ news" by Dmitry Shurupov, Palark.

I’ve made this overview of the remarkable news unveiled during KubeCon + CloudNativeCon North America 2024, which happened in Salt Lake City, Utah, last week. Please note it focuses strictly on the news and announcements rather than what has been going on around the booths, in-person communication, etc. Still, reading it should help the community stay informed about ongoing changes and trends in the vibrant Cloud Native world.

2. "Multi-Cloud: That's one small step for Temporal, one giant leap for reliability" by Raphaël Beamonte, Temporal.

Temporal Cloud is now a multi-cloud platform. In this post, we’ll explore how we leveraged Temporal’s own capabilities to expand our infrastructure from AWS to Google Cloud, the challenges we faced along the way, and how we solved them using cloud-agnostic workflows. Whether you’re considering a multi-cloud strategy or interested in scaling distributed systems, our experience offers valuable insights into managing complexity while maintaining consistency across cloud providers.

3. "Using Helm Hierarchies in Multi-Source Argo CD Applications for Promoting to Different GitOps Environments" by Kostis Kapelonis, Octopus Deploy.

In this guide, we include several Helm-related topics to consider when adopting GitOps and Argo CD in your organization. We describe:
- The recommended Helm structure for GitOps repositories
- When to use the multi-source feature of Argo CD and when not to use it
- How to create Helm value hierarchies and why this is important
- Common Helm bad practices and misconceptions that people carry over to Argo CD

4. "We’re leaving Kubernetes" by Christian Weichel & Alejandro de Brito Fontes, Gitpod.

This is our journey of experiments, failures and dead-ends building development environments on Kubernetes. Over the years, we experimented with many ideas involving SSDs, PVCs, eBPF, seccomp notify, TC and io_uring, shiftfs, FUSE and idmapped mounts, ranging from microVMs, kubevirt to vCluster. [..] This is the story of how (not) to build development environments in the cloud.

5. "Advanced Kubernetes Pod Concepts That You Should Know as a Beginner" by Ali Hamza.

Advanced pod features, such as multi-container pod patterns, Init Containers, and resource management, can optimize application performance and stability. This article will explain these essential concepts, equipping you with tools to manage and scale containerized applications more effectively.

6. "The Hard Truth about GitOps and Database Rollbacks" by Rotem Tamir, Atlas.

In this post, we show why our existing tools and practices cannot deliver on the GitOps promise of "declarative" and "continuously reconciled" workflows and how we can use the Operator Pattern to build a new solution for robust and safe schema rollbacks.

#articles