Dates
Conferences
Tags
Sort by:
Most recent
Conference: KubeCon + CloudNativeCon Europe 2023
Authors: Nabarun Pal, Bob Killen
2023-04-19
tldr - powered by Generative AI
The Kubernetes Steering Committee is responsible for the governance of the Kubernetes project and ensuring its long-term sustainability. They work to encourage contributions from individuals and organizations, provide structure and leadership roles within the project, and advocate for the business value of open source.
- Encouraging contributions from individuals and organizations
- Providing structure and leadership roles within the project
- Advocating for the business value of open source
- Annual report process to highlight areas of help needed
- Challenges with burnout and bias towards employees of larger companies
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Josh Berkus, Catherine Paganini
2022-05-20
Your code is reviewed, docs are being written, and the CNCF is hosting an event for you. What else does an open source project need?As it turns out, a lot. You need to deliberately create a welcoming community, publicize your project, manage contributors' expectations, motivate them to take on more responsibility, develop project policies and processes, and more. With so many things to tackle, it can feel overwhelming. Fortunately, lots of people have done this before — and the CNCF and TAG Contributor Strategy are here to help.Click here to view captioning/translation in the MeetingPlay platform!
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Julius Volz, Björn Rabenstein, Matthias Rampke
2022-05-19
As the 2nd oldest project in the CNCF, you have probably heard about Prometheus before. Nevertheless, the project maintainers will give you an introduction from the very beginning, followed by a deep dive into the exciting new features that have been released recently or are in the pipeline. You will learn about many opportunities to use Prometheus, and maybe we can even tempt you to contribute to the project yourself.Click here to view captioning/translation in the MeetingPlay platform!
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Danielle Lancashire, Tim Hockin
2022-05-19
CNCF project maintainers, named roles, and those who make decisions on behalf of their projects: we welcome you to our second onsite Maintainers Circle!Maintainers Circle is a peer group that meets virtually and at select in person KubeCons with scheduled topics, ample discussion, and networking time. This is not a regular talk session; be prepared to participate in discussions.This session is all about reviewing: the skills needed and the care you should put into yourself as a reviewer for large scale open source projects. We’ll have two experts joining us for lightning talks that feed into group discussions:Tim Hockin,Danielle Lancashire**Both are CNCF project maintainers who have been around the open source infrastructure space for quite some time.The only contract of the members of each circle is to abide by the CNCF Code of Conduct, be kind, open as you'd like, and committed to hearing others out. Everyone will have a chance to participate in whatever activity is set forth in that meeting.**We’d welcome another third 10-minute talk on this topic by a fellow CNCF project maintainerAgenda:Times are estimated14:05 Welcome (less than 5)14:10 Tim14:20-14:45 1st Group14:45-15:00 Danielle15:00-15:20 2nd Group~15:30 wrap up, final messages, resources for future
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Steve Lasker, Justin Cormack
2022-05-18
Notary v2 is a community project to solve the issues that the existing Notary project has that have hindered widespread adoption. The project is a community initiative with the main registry operators, including Docker, Microsoft and Amazon, as well as a broad community of other interested parties and end users. This talk will cover an overview of the project status and cover the open issues and current working areas for the project, around formats and standardisation, open security issues and future work.Click here to view captioning/translation in the MeetingPlay platform!
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Ted Young, Alolita Sharma, Morgan McLean, Daniel Dyla
2022-05-18
tldr - powered by Generative AI
The conference presentation discusses the need for security measures in OpenTelemetry and proposes solutions to potential security risks.
- The speaker suggests applying the principle of attribute removal and processing at the SDK level to prevent sensitive information from leaving the process.
- The redaction processor and collector have the capability to blank out sensitive information such as credit card numbers.
- Baggage is another area where sensitive information can potentially leak and a solution such as a proxy may be necessary to scrub the information.
- There is a need for a community effort to address common security and privacy questions and provide comprehensive answers.
- The speaker also mentions the importance of ensuring that any instrumentation provided to users does not include personally identifiable information by default.
Conference: KubeCon + CloudNativeCon North America 2021
Authors: Chris Marchbanks, Bartek Plotka
2021-10-15
Prometheus is a well-known CNCF Graduated project that allows cheap and effective monitoring capabilities using metrics. With a rich ecosystem of exporters and integrations, Prometheus allows you to collect metrics from your applications running in Kubernetes and beyond in no time. There were many opportunities to learn about Prometheus, its data model and capabilities at every past KubeCon around the globe. This talk will be different. As the cloud-native ecosystem evolves and more organizations adopt cloud-native approaches, all projects are innovating and seeking improvements. We mean things like Kubernetes clusters “as cattle”, multi-cluster applications, eBPF, edge services and more. To keep up with demands for different deployments and architectures, Prometheus evolves too. In this talk, you will learn how you can use and extend Prometheus for those different use cases. In addition, we will highlight advanced, experimental, or upcoming functionality to help with your use cases.
Conference: OWASP 20th Anniversary Event
Authors: Saurabh Nandedkar
2021-09-24
In this session, Saurabh will talk about the OWASP OWTF project and the latest updates.
Conference: OWASP 20th Anniversary Event
Authors: Sam Stepanyan
2021-09-24
tldr - powered by Generative AI
The OWASP Nettacker Project is an open-source software tool that assists with penetration testing by automating tasks such as information gathering and vulnerability scanning. It is written in Python and has a modular structure that allows for easy creation of custom modules. The tool is fast performing and customizable, with profiles that bundle modules focused on specific tasks. Its main use case is asset discovery, allowing users to scan their network for open ports, default credentials, specific vulnerabilities, subdomains, and expired SSL certificates. The tool can be automated using the command line and provides results in CSV, JSON, and HTML formats. The latest version of the tool uses YAML for module writing, making it easier to contribute new modules. The project is open source and welcomes contributions from the community.
- OWASP Nettacker Project is an open-source software tool for penetration testing
- It is written in Python and has a modular structure
- The tool is fast performing and customizable
- Its main use case is asset discovery
- The tool can be automated using the command line and provides results in CSV, JSON, and HTML formats
- The latest version of the tool uses YAML for module writing, making it easier to contribute new modules
- The project is open source and welcomes contributions from the community