Dates
Conferences
Tags
Sort by:
Most recent
Conference: KubeCon + CloudNativeCon Europe 2023
Authors: Denise Schannon
2023-04-21
tldr - powered by Generative AI
The speaker discusses the evolution of Kubernetes and Rancher, and how they have adapted to the ever-changing ecosystem. She also emphasizes the importance of constantly reviewing and iterating processes and teams.
- Kubernetes and Rancher have evolved over time to adapt to the changing ecosystem
- Teams should be split up and dedicated to specific product areas to support career development and easier onboarding
- Efficiency and execution should be the focus points of processes
- Constantly review and iterate processes and teams
Conference: KubeCon + CloudNativeCon North America 2022
Authors: Frederick Kautz
2022-10-28
tldr - powered by Generative AI
The presentation discusses the future of Cloud Native applications and their impact on infrastructure. It explores the concept of emergent systems and how it applies to the community. The speaker predicts that applications will eventually be able to deploy anywhere in the world based on their requirements.
- Cloud Native applications are replacing sysadmins as the primary focus for runtimes and tooling
- New runtime environments are being built on lessons learned from the community to increase developers' capabilities
- Emergent systems have unique behaviors that arise as part of the system, and there is no global control or observability
- Applications will eventually be able to deploy anywhere in the world based on their requirements
- Human processes are impacted by changes in APIs and standards
- The community needs to be thoughtful and careful in taking Cloud Native to the next level
Conference: KubeCon + CloudNativeCon North America 2022
Authors: Tim Hockin
2022-10-25
Kubernetes is one of the largest and most well known systems written in the Go programming language. Kubernetes is also a fairly complex codebase, which often pushes Go to its limits. To make it work, we sometimes have had to go outside of the "normal" usage of Go's tooling and ecosystem. Anyone familiar with the project will probably groan when they heard phrases like "staging repo" or "code generator". We have accrued a pretty significant amount of technical debt over the last few years. With Go 1.18 comes a powerful new feature - "workspaces". This is what happens when the language team looks at what their users are doing and as asks "how can we make this better?". We can wipe away a lot of that debt - "just use workspaces". But, sadly, it's not as easy as it might sound. This talk will introduce listeners to the problems we have, the gross workarounds we use, and how workspaces make it all better. We'll talk a bit about the work that is being done to make "just use workspaces" a reality.
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Savitha Raghunathan, Tabitha Sable, Rey Lejano, Pushkar Joglekar
2022-05-20
SIG Security takes a community-building approach to improving Kubernetes security, both for the project itself and our end users. Join organizers Pushkar, Rey, Savitha, and Tabitha for an overview of how we make space for security collaboration to thrive. We'll share timely updates from our tooling and third-party audit subgroups and information about guided security self-assessments for Kubernetes subprojects. In closing, a deep-dive into our efforts to improve security documentation through blogs, tutorials, whitepapers, and goose honking! You'll learn what's been going on, what’s next, and how you could join in, regardless of your experience from beginner to expert. We hope to see you there!Click here to view captioning/translation in the MeetingPlay platform!
Conference: KubeCon + CloudNativeCon Europe 2022
Authors: Celeste Horgan
2022-05-18
tldr - powered by Generative AI
The presentation discusses the importance of documentation in open-source projects and provides tips for managing documentation as the project grows.
- Documentation is the truth of the project and must be accurate and maintained
- As the project grows, it is important to involve the community in contributing to documentation through good first issues
- Scope documentation tasks well and consider moving docs to their own repo
- Implement content policies, such as beta and alpha policies and documenting API limitations and out-of-scope functionality
- Consider automating documentation processes, such as release notes and CLI flags
- Address hard problems, such as localization and containerization
- Versioning docs is important for managing changes over time
Conference: KubeCon + CloudNativeCon North America 2021
Authors: Justin Cormack, Steve Lasker
2021-10-14
tldr - powered by Generative AI
The presentation discusses the importance of verifying the identity and authenticity of software content in the supply chain through Notary v2. The speaker uses real-world analogies to explain the concept and emphasizes the need for trust and policy management in the deployment process.
- Notary v2 focuses on the distribution and consumption of software content in the supply chain
- Verifying the identity and authenticity of software content is crucial in ensuring security and reliability
- Policy management and trust are necessary in the deployment process
- Real-world analogies, such as airport security checks, can help illustrate the concept
Conference: KubeCon + CloudNativeCon North America 2021
Authors: Caleb Woodbine, Stephen Heywood
2021-10-14
tldr - powered by Generative AI
The presentation discusses the process of testing and documenting endpoints for Kubernetes conformance and stability.
- The process involves discovering and testing new endpoints using API Snoops and documenting the process using org mode and various export formats.
- Existing endpoints can be upgraded to conformance and stability by locating the endpoint in the Kubernetes code base and updating the relevant tests.
- Documentation and testing are important for achieving conformance and stability and ensuring that development environments are up-to-date and shared.
- The presentation provides useful links and resources for those interested in contributing to the Kubernetes conformance testing program.
Conference: KubeCon + CloudNativeCon North America 2021
Authors: Jay Vyas, Friedrich Wilken, Danny Canter, Brandon Smith
2021-10-13
tldr - powered by Generative AI
Updates on bringing Windows workloads to Kubernetes, including recent improvements, planned future improvements, and new development tooling.
- CSI plugin support for Windows is now generally available
- Host process containers (equivalent of privileged containers on Linux) hit alpha in 1.22
- Pursuing a way to identify Windows pods at API admission time
- Enhancement to view node logs with kubectl logs
- Windows Server 2022 offers enhanced container platform with faster download and startup times, improved app compatibility, and consistent network policy with Calico
- New Windows developer environment to make it easier to spin up Windows clusters
Conference: OWASP 20th Anniversary Event
Authors: Scott Gerlach
2021-09-24
tldr - powered by Generative AI
Challenges in implementing application security programs and tools for engineering teams
- Starting a small application security program with a small engineering team and choosing a technology like SCA and DAST
- Helping engineering teams understand and take measured risks in developing and testing code
- Enabling process and tooling that can easily get people started quickly in testing application security
- AppSec tools are built for security teams and can be complicated and difficult to understand for engineering teams
- Using technical jargon and wall of text to describe application security issues can be confusing for engineering teams