Cloud Chirp #6 🌥️ - 10/11/2023
Hello Cloud Enthusiasts,
Welcome back to the nex dose of cloud knowledge! In this edition of our newsletter, we're diving into some of the latest updates and posts from various cloud providers. So, let's jump right into it:
🔗 Docker Image Signing
Title: Signing Docker Official Images Using OpenPubkey – Oct. 13, 2023
Description: This post outlines Docker's collaboration with BastionZero to implement OpenPubkey for signing Docker Official Images (DOI), bolstering software supply chain security. It discusses the DOI signing strategy, covering container image signing, certificate roles, and The Update Framework (TUF) integration for secure trust policy updates. Docker's solution incorporates OpenPubkey, OpenID Connect, and transparency logging to streamline the signing process, diminish reliance on external entities, and enhance the integrity and origin verification of DOI images.
Link: Read more
🔗 eBPF Documentary is OUT!
Title: eBPF’s Journey – Unlocking The Kernel – Nov. 8, 2023
Description: The eBPF documentary explores the transformative journey of this revolutionary technology, allowing safe modification of the Linux kernel's behavior without altering its source code. Featuring pioneers like Alexei Starovoitov, Thomas Graf, Daniel Borkmann, Brendan Gregg, David Miller, and Liz Rice, the documentary unveils the motivations behind eBPF's development and emphasizes Cilium's crucial role in democratizing this technology. From its inception, the mission to establish a secure networking layer to the community engagement sparked at DockerCon 2017, the documentary unveils the untold story of eBPF's evolution and its ultimate adoption in the cloud-native ecosystem.
Link: Read more
🔗 Flux Second Security Audit
Title: Second Flux Security Audit has concluded – Nov. 9, 2023
Description: Flux, after undergoing its second security audit facilitated by the CNCF and the Open Source Technology Improvement Fund, has been found to be "well structured and generally written defensively," with no new Common Vulnerabilities and Exposures (CVEs) identified. The audit focused on Flux's General Availability (GA) release features, and while 10 low- and informational-severity findings were discovered, 8 have already been addressed.
Link: Read more
🔗 Kubernetes Cluster Autoscaler vs. Karpenter
Title: How Grafana Labs switched to Karpenter to reduce costs and complexities in Amazon EKS – Nov. 9, 2023
Description: Grafana Labs successfully migrated from Cluster Autoscaler (CA) to Karpenter for autoscaling on Amazon EKS, addressing challenges like capacity management issues and increased complexity. Karpenter's benefits, such as intelligent capacity management and cost optimization, led to a 50% reduction in idleness ratios and improved cluster workload utilization. The switch simplified infrastructure, offering better reliability and disaster recovery, making Karpenter a preferred solution for Grafana Labs' AWS clusters.
Link: Read more
🔗 Podman Desktop 1.5 Release
Title: Celebrating the release of Podman Desktop 1.5 – Nov. 6, 2023
Description: Podman Desktop 1.5 enhances container management for developers with new onboarding and configuration wizards for quick setup and a comprehensive Kubernetes pods summary tab, offering deeper insights. The release builds on the evolution since version 1.0, introducing features like the Minikube extension, Kubernetes context switcher, and support for running multiple Kind clusters locally. With these improvements, Podman Desktop remains a powerful tool for efficient and cost-effective container management.
Link: Read more
📌 Pro Tip: Mark your calendar for December 5th, 2023, as Kubernetes is releasing version 1.29.0. Don't miss out on discovering the latest features!
I hope you find these resources as enlightening as I did. Stay tuned for more exciting developments and updates in the world of cloud computing in next week's newsletter.
Until then, keep innovating and soaring in the cloud! ☁️
Warm regards, Teodor