A K8s operator to reduce CO2 footprint of your clusters

https://github.com/kube-green/kube-green

Mercari's Microservices Platform Network team outlines the company's successful migration from Fastly to Cloudflare, emphasizing strategies to ensure minimal disruptions. This blogpost also introduces future initiatives like "CDN as a Service," aimed at empowering developers through tools such as CDN Kit and automated permission systems.

https://engineering.mercari.com/en/blog/entry/20241223-a-smooth-cdn-provider-migration-and-future-initiatives/

isd (interactive systemd) – a better way to work with systemd units

https://github.com/isd-project/isd

This driver allows Kubernetes to access NFS server on Linux node.

https://github.com/kubernetes-csi/csi-driver-nfs

Static Code Analyser for Infrastructure-as-Code languages such as CloudFormation and Terraform as well as DevOps like Docker and Kubernetes

https://github.com/SonarSource/sonar-iac

This post critiques the casual metaphors used to describe Facebook's 2021 outage, arguing that such language trivializes preventable engineering failures and undermines accountability. By examining historical disasters like the Grover Shoe Factory explosion, the article emphasizes the need for rigorous engineering standards to ensure safety and reliability in critical infrastructure.

https://www.flyingpenguin.com/?p=64164

This article introduces a cost-effective strategy for combining AWS WAF with reactive infrastructure to block attackers without exceeding budget constraints. By leveraging the WAF-Ja3FingerPrint-Blacklist Terraform module, it dynamically reconfigures WAF rules based on traffic analysis, reducing the expense of advanced rules like Account Theft Protection while maintaining robust security.

https://dev.to/aws-builders/combine-aws-waf-with-reactive-infrastructure-to-block-attackers-and-dont-go-broke-in-the-process-2jpb

Underlay and RDMA network solution of the Kubernetes, for bare metal, VM and any public cloud

https://github.com/spidernet-io/spiderpool

Helps you search and filter resource instances from the output file generated by terraform validate -json or tofu validate -json

https://github.com/ivica-k/terraform-validate-explorer

This article delves into the "hot shard problem," a common challenge in distributed systems where uneven data distribution leads to resource saturation on specific shards. It outlines practical solutions, including vertical scaling, caching, load balancing, and selecting optimal sharding keys, to ensure system performance and reliability.

https://newsletter.scalablethread.com/p/how-to-handle-hot-shard-problem

In this post, Rachel explores the frustrations of debugging lag issues in distributed systems, highlighting how subtle timing problems can cascade into larger failures. Through real-world anecdotes, the article underscores the importance of understanding system behavior and addressing latency with precision.

https://rachelbythebay.com/w/2025/01/09/lag/

The article "Load Testing Kubernetes Clients Without Breaking the Bank" on *itnext.io* likely discusses strategies for conducting load testing on Kubernetes clients in a cost-effective manner. Load testing is crucial for ensuring that applications can handle increased traffic and usage without performance degradation, and doing so efficiently is important for businesses with limited budgets.

https://itnext.io/load-testing-kubernetes-clients-without-breaking-the-bank-f43332faa6ce

The kubectx for operators.

https://github.com/danielfoehrKn/kubeswitch

Terrateam is an open-source GitOps CI/CD platform for automating infrastructure workflows. It integrates with GitHub to orchestrate Terraform, OpenTofu, CDKTF, Terragrunt, and Pulumi operations via pull requests.

https://github.com/terrateamio/terrateam

🕵️‍♂️ TUI for sniffing network traffic using eBPF on Linux

https://github.com/pythops/oryx

This blogpost explores the deployment of large language models (LLMs) using a combination of Google Kubernetes Engine (GKE), Google Gemma, and the Ollama framework, highlighting the benefits of customization, flexibility, and cost-effectiveness. By leveraging these tools, users can achieve seamless and efficient LLM deployment while maintaining control over their data and environment.

https://medium.com/google-cloud/gke-gemma-ollama-the-power-trio-for-flexible-llm-deployment-5f1fa9223477

This tutorial explores the integration of Kluctl with Cluster API, showcasing how Kluctl can efficiently manage Kubernetes clusters by leveraging its templating and deployment capabilities. By using Kluctl, users can manage multiple workload clusters with a unified CLI, benefiting from features like templating, which simplifies the management of complex deployments without requiring extensive copy-pasting or patching. The tutorial demonstrates setting up a local environment using Kind and deploying a workload cluster with Kluctl.

https://kluctl.io/blog/2024/03/13/cluster-api-kluctl/

A task runner / simpler Make alternative written in Go

https://github.com/go-task/task

Automated resources sizing tool for containers in kubernetes

https://github.com/unagex/kondense

This essay delves into the practical aspects of Kubernetes security using a hands-on training simulator developed by ControlPlane. The simulator offers a unique approach to learning container and Kubernetes security by deploying a vulnerable cluster in AWS and guiding users through scenarios to identify and fix security vulnerabilities, all in a fun Capture-the-Flag format.

https://blog.palark.com/kubernetes-security-practical-training-simulator/

This piece discusses how FinOps can transform IT cost centers into value drivers by optimizing financial management and operations. By implementing FinOps practices, organizations can shift from merely managing costs to driving business value through better resource allocation, improved forecasting, and enhanced collaboration between IT and finance teams.

https://thenewstack.io/finops-can-turn-it-cost-centers-into-a-value-driver/