Learn Kubernetes Weekly issue 114

Transition from Gatekeeper to Kyverno, eBPF and real-time SSL/TLS encrypted traffic, I just want mTLS, Cilium cheat sheet

15 Jan 2025

Articles

Why did we transition from Gatekeeper to Kyverno for Kubernetes policy management?
Tanat Lokejaroenlarb
In this article, you will learn why Adevinta's team transitioned from Gatekeeper to Kyverno.
Discover the challenges they faced with Gatekeeper's MutatingWebhook capability and the benefits of Kyverno.
What insights can eBPF provide into real-time SSL/TLS encrypted traffic and how?
Teodor Janez Podobnik
In this article, you will learn how eBPF can provide insights into real-time SSL/TLS encrypted traffic, enabling monitoring and analysis of application performance and traffic patterns without compromising security.
I just want mTLS on Kubernetes
In this article, you'll learn about mutual TLS on Kubernetes and compare different approaches: ambient mode, sidecar-based service mesh, or a DIY solution.
[PDF] Cilium cheat sheet
This cheat sheet for Cilium condenses many of the most useful and used commands for setup and troubleshooting.
Mastering progressive delivery: implementing canary releases, a/b testing, and custom metrics with
Ibrahim Halil Koyuncu
In this article, you'll learn how to implement progressive delivery techniques such as Canary Releases and A/B Testing using Istio and Flagger and discover how to define custom metrics to monitor deployments for safe and efficient rollouts.
How Tesla is using Kubernetes and Kafka to handle trillions of events per day
Amine Raji
In this case study, you'll learn how Tesla leverages Kubernetes and Apache Kafka to handle trillions of events per day, enabling real-time insights and innovations in the automotive industry.

Articles worth checking out:

⎈ Become an expert in Kubernetes: Advanced Kubernetes course

Learnk8s

Join Learnk8s' 4-day Advanced Kubernetes workshop next week!

Get your hands dirty with Kubernetes and learn what makes Kubernetes tick in a session packed with hands-on labs!

Tutorials

Migrating from Istio to Linkerd
Scott RigbyFlynn
In this article, you will learn how to migrate an existing Istio deployment to Linkerd, including a step-by-step guide on planning the migration, managing ingress and egress, and migrating authorization policies.

Kubernetes jobs

- Platform Engineer with Benefex
- Salary: £52K to £62K a year
- Location: based in the office (and remote from home) in Southhampton, GB
- Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Go, Shell, Python, Java, Mongo
- Software Engineer with Deutsche Telekom IT Solutions Slovakia
- Salary: €8K a year
- Location: remote from Slovakia
- Tech stack: Kubernetes, AWS, Azure, GCP, On-premise, Docker, Python, SQL, Javascript, Java
- DevOps Engineer with Booz Allen
- Salary: $75.6K to $172K a year
- Location: based in the office in Reston, VA, USA
- Tech stack: Kubernetes, AWS, Azure, Helm, Flux, ArgoCD, Docker, Shell, Python, Java
- Software Engineer with Oxylabs
- Salary: €37.8K to €83.4K a year
- Location: based in the office (and remote from home) in Vilnius, LT
- Tech stack: Kubernetes, Go, SQL, Javascript, PHP, Typescript, Redis, MySQL, Kafka, Elastic Search

Discover more Kubernetes jobs on Kube Careers →

Code & tools

kubernetes/git-sync
git-sync is a simple command that pulls a git repository into a local directory.
It is a perfect "sidecar" container in Kubernetes - it can periodically pull files down from a repository so that an application can consume them.
JET Pilot: open-source Kubernetes IDE
unxsist
JET Pilot is an open-source Kubernetes IDE.
Features:
- Real-time Logs.
- Kubernetes Object Management.
- Container Shell.
- Command Palette.
nodejs-k8s: Kubernetes in Node JS
Megapixel99
nodejs-k8s is a tool that attempts to recreate the core functionality of Kubernetes in NodeJS.
It allows users to create and manage Kubernetes resources locally using the kubectl CLI.
PowerfulSeal: injects failure
PowerfulSeal injects failure into Kubernetes clusters for early problem detection.
It supports various platforms, uses chaos experiments, yaml policies, and multiple modes, collects metrics from Prometheus and Datadog, and verifies resiliency.
k8sai: AI answers
argon-labs
k8sAI is a tool that combines natural language processing (NLP) and Kubernetes-specific knowledge to provide answers and solutions to Kubernetes-related questions and issues.

Other interesting projects:

Upcoming Kubernetes events

Jan
16
Building a multi-cloud multi-region DBaaS
Online meetup organized by Data on Kubernetes Community.
- This is a virtual event
- This is a free event.
Jan
21
Troubleshoot Kubernetes networking issues and implement effective network policies
Online webinar organized by Tigera.
- This is a virtual event
- This is a free event.
Jan
16
Kubernetes compliance: implementing network security to achieve compliance with PCI, SOC2 and other frameworks
Online workshop organized by Tigera.
- This is a virtual event
- This is a free event.
Jan
22
Chaos Carnival
Online conference organized by Harness.
- This is a virtual event
- This is a free event.
Jan
17
Efficient application debugging with traces, logs, and metrics via OpenTelemetry
Online meetup organized by Cloud Native Tunisia.
- This is a virtual event
- This is a free event.

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

10
days
Cloud Native Days Romania
The Call For Paper is open until 31 January 2025 at UTC. More info →
Location: Bucharest, RO
In-person conference organized by Cloud Native Romania.
The conference starts on the 6 May 2025.
Apply here
12
days
KubeCon + CloudNativeCon Japan 2025
The Call For Paper is open until 2 February 2025 at UTC. More info →
Location: Tokyo, JP
In-person conference organized by Linux Foundation.
The conference starts on the 17 June 2025.
Apply here
12
days
KubeCon + CloudNativeCon China 2025
The Call For Paper is open until 2 February 2025 at UTC. More info →
Location: Hong Kong, HK
In-person conference organized by Linux Foundation.
The conference starts on the 11 June 2025.
Apply here
20
days
Kubernetes Community Days Costa Rica 2025
The Call For Paper is open until 10 February 2025 at UTC. More info →
Location: Heredia, CR
In-person conference organized by KCD Costa Rica.
The conference starts on the 3 May 2025.
Apply here
23
days
Kubernetes Community Days Texas Austin 2025
The Call For Paper is open until 13 February 2025 at UTC. More info →
Location: Austin, TX, USA
In-person conference organized by KCD Texas.
The conference starts on the 15 May 2025.
Apply here
70
days
ContainerDays
The Call For Paper is open until 31 March 2025 at UTC. More info →
Location: Hamburg, DE
In-person conference organized by Looevent.
The conference starts on the 9 September 2025.
Apply here
18
days
Kubernetes Community Days Helsinki 2025
The Call For Paper is open until 8 February 2025 at UTC. More info →
Location: Helsinki, FI
In-person conference organized by KCD Helsinki.
The conference starts on the 6 May 2025.
Apply here
16
days
Kubernetes Community Days Beijing 2025
The Call For Paper is open until 5 February 2025 at UTC. More info →
Location: Beijing, CN
In-person conference organized by KCD Beijing.
The conference starts on the 15 March 2025.
Apply here
53
days
Kubernetes Community Days Czech & Slovak 2025
The Call For Paper is open until 15 March 2025 at UTC. More info →
Location: Prague, CZ
In-person conference organized by KCD Czech & Slovak.
The conference starts on the 5 June 2025.
Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!

Or follow us on: