Newsletter of Carlos Santana - Issue #35
This week we start a new book, "Hacking Kubernetes," in the Kubernetes Book Club, Istio is joining CNF following the steps of Knative, and Elon Musk is buying Twitter today and taking it private.
It is only Monday, and there is so much going on already.
News
Don’t Panic: A Playbook for Handling Account Compromise with Sigstore — blog.sigstore.dev
Despite your best efforts, you may no longer trust artifacts, keys, or identities when signing software.
OSS Capital Announcement: $200M For An Open Future - COSS Community — www.coss.community Today, OSS Capital is thrilled to publicly announce our first and second funds with $200M dedicated... Tagged with coss, funding, vc, opencore.
Istio has applied to become a CNCF project
The Istio project is pleased to announce its intention to join the Cloud Native Computing Foundation (CNCF).
Welcome to IstioCon 2022! — events.istio.io
IstioCon is the community conference for the industry’s most popular service mesh.
How to Model Your Gitops Environments and Promote Releases between Them — codefresh.io Learn how to model your GitOps environments using different folders on the same Git branch, and how to handle environment promotion.
Time to patch nginx-ingress controllers to fix 2 recent critical CVEs, CVE-2021-25745 and CVE-2021-2576 they allow any user with ingress permissions to access the service account secret token of the main shared controller.
Chainguard Whitepaper All About That Bade Image
Resources to build Kubernetes Operators Resources to build Kubernetes Operators
'Restricting cluster-admin Permissions' by Marcus Noble — marcusnoble.co.uk
Generally, and by default, operators of the cluster are assigned to the cluster-admin ClusterRole.
eBPF for Service Mesh? Yes, but Envoy Proxy is here to stay - Solo — www.solo.io Our goal here at Solo.io is to bring valuable solutions to our customers around application networking and service connectivity. Back in October, we announced our plans to enhance our enterprise […]
Webamp · Winamp 2 in your browser — webamp.org Winamp 2.9 reimplemented in HTML5 and JavaScript
American Phone-Tracking Firm Demo’d Surveillance Powers by Spying on CIA and NSA — theintercept.com Anomaly Six, a secretive government contractor, claims to monitor the movements of billions of phones around the world and unmask spies with the press of a button.
Removing the stigma of a CVE | The GitHub Blog — github.blog Do you worry that a CVE will hurt the reputation of your project? In reality, CVEs are a tracking number, and nothing more. Here's how we think of them at GitHub.
Assets
GitHub - kubernetes-sigs/scheduler-plugins: Repository for out-of-tree scheduler plugins based on scheduler framework. — github.com Repository for out-of-tree scheduler plugins based on scheduler framework. - GitHub - kubernetes-sigs/scheduler-plugins: Repository for out-of-tree scheduler plugins based on scheduler framework.
GitHub - backube/volsync: Asynchronous data replication for Kubernetes volumes — github.com Asynchronous data replication for Kubernetes volumes - GitHub - backube/volsync: Asynchronous data replication for Kubernetes volumes
twitter/the-algorithm · GitHub — github.com
Future home of twitter algorithm
Skills
Building functions with Knative and Tekton - DEV Community Knative was recently accepted as a CNCF incubation project and there are so many exciting things... Tagged with knative, functions, tekton, faas.
How to Bring your own Scheduler into OpenShift with the Secondary Scheduler Operator — cloud.redhat.com The Kubernetes scheduler is an enterprise grade stable component in Kubernetes that decides where to place the incoming pods by a two step operation of filtering and scoring.
Best Practices for Multi-tenancy in Argo CD | by Dan Garfield | Argo Project — blog.argoproj.io This blogpost is co-authored by Dan Garfield and Jesse Suen. Special thanks to Alexander Matyushentsev, Jann Fischer, Henrik Blixt, and the amazing community for all their hard work in making Argo CD…