Cloud Native News - CNN49
Kubernetes 1.20, Prometheus and Grafana on AWS, thinking about Kubernetes security boundaries and containerd development
Containers & Orchestration
- Kubernetes 1.20: The Raddest Release
Probably no news to you... We list this here for the sake of completeness, as the announcement has been published just an hour after our last CNN issue ;) - Announcing General Availability of HashiCorp Nomad 1.0
Working professionally with Kubernetes for the last couple of years, HashiCorp Nomad has been a refreshingly simple approach to many container orchestration use cases. All this while still being compliant with standards such as CNI!
I like to see hitting Nomad 1.0, hoping that it will gain more popularity. - Kubernetes Failure Stories
Maybe the most complete directory of Kubernetes failure stories yet? :)
Observability
- Amazon Managed Service for Prometheus (AMP)
So Prometheus is the next OSS tech in the line of AWS Managed Services. While it makes sense, I only hope AWS is contributing back to Cortex, which is the backbone of "Amazon Managed Service for Prometheus (AMP)". What a name! - Amazon Managed Service for Grafana - Fully Managed Grafana Data Visualization
Grafana partnered with AWS to bring a Managed Service for Grafana to the public. Together with Prometheus on AWS, this is an excellent fit. Also, Grafana recently improved its Cloudwatch integration... wait... What was Cloudwatch again...?
Security
- Security boundaries with Kubernetes and systemd
"As an attacker, the first thing I would do would be to ensure that whatever security tool you were running in Kubernetes - was turned off." - enough reason to run runtime security on an underlying layer!
CI/CD
- Announcing Spinnaker’s Vision & Mission
It has been a bit calm around the Spinnaker project lately...
Networking
- Why Linkerd doesn't use Envoy
"Simplicity, resource consumption, and security were the driving factors in our decision to not adopt Envoy." - An excellent read on making reasonable decisions, by not following the mainstream, to create a great product!
Development
- containerd development with multipass
"As new contributors came on board, we needed a way for them to build code against containerd on a Mac or Windows computer. Learn how Multipass fit the bill."
Photo by Mikel Parera on Unsplash