Securing Kubernetes clusters requires understanding both offensive and defensive strategies. This article by Ridho Adya explores the various attack vectors and defense mechanisms for Kubernetes environments. Learn how to identify vulnerabilities, execute common attack techniques, and implement best practices for defending your Kubernetes clusters against potential threats.

https://medium.com/@ridhoadya/unveiling-the-battlefield-attacking-and-defending-kubernetes-clusters-9702cdbe941a

A smarter cd command. Supports all major shells.

https://github.com/ajeetdsouza/zoxide

Free and Open Source PaaS-platform for seamless management of virtual machines, managed Kubernetes, and Databases-as-a-Service

https://github.com/aenix-io/cozystack

Karpenter 1.0, recently announced by AWS, is a powerful open-source Kubernetes cluster autoscaling tool designed to optimize resource provisioning in real-time. This blog post from AWS highlights the key features of Karpenter, explaining how it improves the scalability and efficiency of Kubernetes clusters by automatically adjusting compute resources based on workload demands. Learn how Karpenter 1.0 can simplify cluster management and enhance operational efficiency.

https://aws.amazon.com/blogs/containers/announcing-karpenter-1-0/

Terraform drift detection is essential for ensuring that your infrastructure remains consistent with your code. This article from Let's Do DevOps explores how to implement and manage drift detection in Terraform environments. Learn about the tools, techniques, and best practices for identifying infrastructure drift and keeping your deployments aligned with their intended state.

https://www.letsdodevops.com/p/lets-do-devops-terraform-drift-detection

Reducing networking costs is crucial for optimizing cloud infrastructure, especially when managing traffic between tools like Flux and GitHub. This article from Tenets explores strategies for minimizing networking expenses by optimizing traffic flow between Flux and GitHub. Learn how to implement cost-saving measures without compromising performance or security in your continuous deployment workflows.

https://medium.com/tenets/saving-networking-costs-for-traffic-flow-between-flux-github-b1cebc76fd41

Using TargetGroupBinding with AWS Load Balancer Controller enables more efficient traffic routing to Kubernetes workloads. This AWS blog post explores common patterns for configuring TargetGroupBinding to integrate AWS Load Balancers with Kubernetes services. Learn how to leverage these patterns to optimize network traffic, enhance scalability, and ensure high availability for your Kubernetes applications.

https://aws.amazon.com/blogs/containers/patterns-for-targetgroupbinding-with-aws-load-balancer-controller/

Kubernetes-based load balancing

https://github.com/kubermatic/kubelb

Automating credential rotation is a key practice for maintaining security in cloud environments. This article from Mixpanel Engineering explains how to automate the rotation of credentials using Terraform. It covers the setup, tools, and processes for securely rotating secrets and API keys, ensuring that your infrastructure remains secure without manual intervention.

https://engineering.mixpanel.com/automate-rotating-credentials-using-terraform-b0e7dab4d793

Automate Kubernetes Configuration Editing

https://github.com/kptdev/kpt

Configuring Ingress in a lightweight Kubernetes distribution like K3s with Traefik can greatly enhance application routing and traffic management. This article from Sklar provides a detailed guide on setting up Traefik as the default Ingress controller in K3s. Learn how to configure Traefik for efficient load balancing, SSL termination, and traffic routing, ensuring smooth and secure operations in your K3s clusters.

https://sklar.rocks/k3s-traefik-ingress/

🚀 Join our AWS Workshop on November 21st! 🚀

We are excited to announce that on Thursday, November 21st, we are hosting an AWS Workshop "One Observability Workshop", open to everyone!

☁️ November 21, 2024
☁️ Free of charge
☁️ Online
☁️ English

This workshop provides hands-on experience with a wide variety of tools AWS offers for monitoring and observability.

The workshop will be led by Sergey Kirgizov, an AWS expert and Cloud Engineering Manager I at EPAM Systems.

We will provide a dedicated training account for each participant who registers via the Google Form (https://forms.gle/EeEPVPNCUGfc18Qq7). However, you can also use your personal AWS account to participate.

IMPORTANT: Please make sure to complete the Google Form https://forms.gle/EeEPVPNCUGfc18Qq7 registration by 22:00 UTC+2 on November 20th.

Find out more details and register for the workshop via the link below:
https://wearecommunity.io/events/one-observability-workshop

Drive Terraform at terminal velocity.

https://github.com/leg100/pug

Kubernetes and virtual machines are both popular choices for deploying applications, but they serve different purposes and offer unique advantages. This article from iximiuz.com compares Kubernetes with virtual machines, highlighting their key differences in terms of resource management, scalability, and use cases. Learn which technology best suits your needs depending on your application's architecture and operational requirements.

https://iximiuz.com/en/posts/kubernetes-vs-virtual-machines/

Understanding Kubernetes API groups and versions is key to managing resources and ensuring compatibility as Kubernetes evolves. This article from DevOps Voyager explores Kubernetes API groups and versions, detailing how they are structured and their importance in organizing and extending the Kubernetes API. Learn how to effectively navigate and use different API groups and versions to manage workloads and ensure backward compatibility in your clusters.

https://devopsvoyager.hashnode.dev/exploring-kubernetes-api-groups-and-versions

Backing up your Git repositories is essential for safeguarding code and ensuring availability in case of data loss or corruption. This article by Mathieu Larose provides a guide on how to effectively back up Git repositories, covering various strategies such as mirroring, automated backups, and cloud storage solutions. Learn the best practices to ensure your Git repositories are securely backed up and recoverable at all times.

https://mathieularose.com/git-backup

An app that helps you monitor your Kubernetes cluster, debug critical deployments, and gives recommendations for standard practices.

https://github.com/kubeshop/botkube

Managing multiple environments in Kubernetes can be complex, but using tools like Flux and vCluster can streamline the process. This article by Fra Bernhardt explains how to set up a multi-environment Kubernetes infrastructure on AWS, leveraging Flux for GitOps-driven automation and vCluster for managing lightweight virtual clusters. Learn how this combination simplifies environment management and enhances scalability and flexibility in your DevOps workflows.

https://medium.com/@fra.bernhardt/streamlining-devops-multi-environment-kubernetes-setup-with-flux-and-vcluster-on-aws-6ee83457c08c

Organize Kubernetes manifests in TypeScript.

https://github.com/tommy351/kosko

Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.

https://github.com/parca-dev/parca