logo

2022-10-24 ~ 2022-10-28

Presentations (with video): 288 (213)

The Cloud Native Computing Foundation’s flagship conference gathers adopters and technologists from leading open source and cloud native communities in Detroit, Michigan from October 24 – 28, 2022. Join containerd, CoreDNS, Envoy, etcd, Fluentd, Harbor, Helm, Jaeger, Kubernetes, Linkerd, Open Policy Agent, Prometheus, Rook, TiKV, TUF, Vitess, Argo, Backstage, Buildpacks, Chaos Mesh, Cilium, CloudEvents, CNI, Contour, Cortex, CRI-O, Crossplane, CubeFS, dapr, Dragonfly, Emissary Ingress, Falco, Flagger, Flux, gRPC, Hubble, in-toto, KEDA, Keptn, Knative, KubeEdge, KubeVirt, Kyverno, Litmus, Longhorn, NATS, Notary, OpenMetrics, OpenTelemetry, Operator Framework, SPIFFE, SPIRE, Tetragon, Thanos, and Volcano as the community gathers for five days to further the education and advancement of cloud native computing.

Sort by:  

Authors: Ricardo Rocha, Emily Fox, Frederick Kautz
2022-10-28

Tags:
Authors: Ricardo Rocha, Emily Fox, Frederick Kautz
2022-10-28

Tags:
Authors: Chris Aniszczyk
2022-10-28

Tags:
Authors: Chris Aniszczyk
2022-10-28

tldr - powered by Generative AI

The conference presentation discusses the current state and future directions of the Kubernetes ecosystem, including the need for better developer tooling, managing multiple clusters, and improving developer experience.
  • The Kubernetes ecosystem needs to focus on keeping secrets more secure
  • Multi-tenancy needs to be improved with a comprehensive open-source solution
  • Developer experience needs to be simplified by reducing the number of tools needed to run a successful production environment
  • Developer retention needs to be improved to ensure long-standing projects
  • Better documentation is needed to help users choose between multiple projects with overlapping functionality
  • Managing multiple clusters and scheduling applications across them is still a challenge
  • More work needs to be done on developer tooling, including webassembly projects
  • The Kubernetes ecosystem needs to continue to evolve and improve
Authors: Joanna Lee
2022-10-28

Are Codes of Conduct risky business?  The pending lawsuit against the organizers of DEF CON hacker conference arising from Code of Conduct enforcement decision suggests so.  In this session, we'll discuss:The factual background, legal claims, and status of the DEF CON lawsuit (to the extent publicly known),What Code of Conduct responders can learn from the lawsuit,Legal risks associated with Code of Conduct enforcement, andTips and best practices for managing legal risk and minimizing the threat of litigation.
Authors: Ricardo Katz, James Strong
2022-10-28

tldr - powered by Generative AI

The presentation discusses the complexity of managing the Ingress Nginx project and the roadmap for future developments.
  • The Ingress Nginx project is complex and requires extensive testing and maintenance
  • The project includes multiple container images, static configurations, annotations, and configuration options
  • The roadmap includes a data plan control plane split and the addition of new features such as Open Telemetry
  • Users are encouraged to test new releases and provide feedback to ensure stability
  • The CH root environment was added to address a CVE vulnerability and will be removed once the CPDP split is complete
Authors: Jonathan Berkhahn, Alexander Greene, Varsha Prasad Narsing, Austin Macdonald
2022-10-28

tldr - powered by Generative AI

The presentation discusses the Operator SDK and the new Hybrid Helm Operator, as well as future plans for external bundle validation.
  • The Operator SDK is a toolset for building Kubernetes operators
  • The Hybrid Helm Operator allows for more control and customization than the original Helm Operator
  • Future plans for the Operator SDK include external bundle validation
  • Quarkus is a faster alternative to JVM for building operators
Authors: Dagan Henderson, Will Kline
2022-10-28

As powerful as Kubernetes is out-of-the-box, it’s a reasonable bet that your organization’s baseline cluster includes more than just the core Kubernetes components. Service meshes, CSI drivers, admission controllers, and database engines are nearly ubiquitous additions to production-ready clusters. Crucially, these applications allow your organization’s development teams to focus on solving the organization’s unique challenges by building on top of robust third-party solutions that solve common industry problems, but vulnerabilities in third-party code can put the security of your clusters at risk. In this talk, the speakers will briefly review a few examples of real-world vulnerabilities in third-party applications commonly found in large Kubernetes clusters and describe just how they were discovered; demonstrate how critical some vulnerabilities can be; and then review clear, actionable steps your organization can take to help prevent third-party vulnerabilities from being the weak link in your clusters’ security.
Authors: John Howard, Keith Mattix
2022-10-28

tldr - powered by Generative AI

The Gateway API should become a universal set of resources to describe all Kubernetes traffic north, south, and east-west. The Gamma Initiative was formed to bring all the benefits that Gateway API has started to succeed at in the Ingress space but to service mesh.
  • The Gateway API features are not specific to Ingress traffic and can be used for all Kubernetes traffic.
  • The Gamma Initiative was formed to create a unified API for traffic going both in and out of the cluster and across different services.
  • The goal is to have a unified API across vendors of meshes and between Ingress and mesh.
  • The initiative has weekly meetings and resources available for those who want to get involved.
  • The first big milestone for the project is the support for defining how HTTP traffic works in a service mesh.
  • The Gamma Initiative aims to make Kubernetes easier for everyone to use.
Authors: Kapil Thangavelu, Sonny Shi, Jorge Castro
2022-10-28

Download the code ahead of time. CLA Required.Compliance requirements are necessary for the entire industry, as such tools like Cloud Custodian (c7n) map to all the resources that public clouds offer, as a result this means that the project must keep up with all the changes, new features, and capabilities of all the major cloud providers, as well as supporting new ones such as Kubernetes. This results in many inflight features, bug fixes, and pull requests.In this ContribFest Session we will go over getting started with contributing to Custodian, including architecture, development environment, standards and procedures for the project, as well as go over some of the key challenges for supporting such a wide variety of use cases and clouds.This Contribfest session is designed to provide projects with the space and resources to tackle outstanding technical debt, security issues, or outstanding impactful feature requests. They are intended to provide a place for maintainers to meet contributors and potential contributors and work together on solving a problem.