Learn Kubernetes Weekly issue 128

Why Pull Base Images?, Istio Ambient vs Cilium, Linting tools, Git happens: Argo CD took over, pgBackRest and ArgoCD have your back (literally)

23 Apr 2025

This newsletter is brought to you by Akamai Cloud — build and deliver low-latency, edge native applications on the world's most distributed cloud computing platform.

🚀 I'll teach an Advanced Kubernetes course in Singapore on May 5 (in 2 weeks)!

If you are local (or find yourself in Singapore), join me for four days of Kubernetes hands-on learning, real-world scenarios, and networking opportunities with fellow Kubernetes enthusiasts.

Articles

  1. Why Pull Base Images When You Can Build Your Own?

    vaibhavlokhande3000

    Build your own secure, lightweight container base images with Buildah and Debootstrap instead of relying on pre-built ones.

    Gain full control and customisation for optimised deployments through a step-by-step guide.

  2. [PDF] Stable Diffusion reduced AI inference costs by up to 86%

    Discover how the Akamai RTX 4000 Ada GPUs outperformed AWS, cutting inference costs for Stable Diffusion by up to 86%.

    sponsored

  3. Scaling in the Clouds: Istio Ambient vs Cilium

    Mitch Connors

    In a 1,000-node Kubernetes test, Istio's ambient mode outperformed Cilium with 56% higher throughput and 20% lower latency.

    Istio's centralized control plane ensured stability, while Cilium's per-node setup caused API crashes.

  4. Kubernetes configuration linting tools

    Brian Grant

    The article reviews Kubernetes configuration linting tools, highlighting kubeconform for schema validation, Kyverno/Checkov for policies, and KubeLinter for best practices.

  5. Git happens: how Argo CD took over our deployments

    Laurent Lavaud

    Learn how Mirakl, a company specialising in e-commerce solutions, leveraged Argo CD and Helm to streamline their Kubernetes deployments and improve their GitOps practice.

  6. Patroni Backups: When pgBackRest and ArgoCD have your back (literally)

    Ziv Yatzik

    This article details a scalable PostgreSQL backup solution.

    Using pgBackRest, Ansible, and GitOps, it automates backups, archives WALs, and provides monitoring for reliable data protection and recovery.

Articles worth checking out:

Unlock efficient and responsive AI

Reduce AI latency by up to 86% with Akamai Cloud Inference. Seamlessly scale real-time models with NVIDIA GPUs and run inference closer to users.

Try for free

Unlock efficient and responsive AI

Tutorials

  1. Deploy a Chatbot and RAG Pipeline for AI Inferencing on Kubernetes

    Deploy a RAG pipeline on Akamai's Kubernetes service using GPU instances.

    Create a chatbot that answers queries with data from your custom source, enhanced by Retrieval-Augmented Generation.

    sponsored

  2. Kubernetes: A Single AWS Load Balancer for Different Kubernetes Ingresses

    Arseny Zinchenko

    The article explains how to use AWS Load Balancer Controller's IngressGroup to merge Kubernetes Ingress resources across namespaces into a single AWS ALB, reducing costs via shared annotations and host-based routing.

  3. Persistent Volume and Persistent Volume claim hands-on

    Ashhad Ali

    Learn how to implement Persistent Volumes (PVs) & Claims (PVCs) in Kubernetes.

    This tutorial covers data persistence across Pod restarts/deletions, PV/PVC setup, hostPath basics, reclaim policies, and troubleshooting to build resilient apps.

  4. A Practical Approach to Keycloak Token Exchange: Converting External Tokens for Internal Use with Kubernetes and Istio

    Santosh Shinde

    In this tutorial, you'll explore an approach to setting up a Keycloak token exchange in a local Kubernetes environment with Istio ingress.

  5. Turing Pi 2 home cluster

    Tomas Sirio

    In this article, you will learn about Tomas' experience building a Kubernetes cluster using a Turing Pi 2 board with Raspberry Pi Compute Modules, including the setup, storage, and application deployment.

More tutorials:

Kubernetes jobs

    • Platform Engineer with Whatnot

    • Salary: $185K to $245K a year

    • Location: based in the office in San Francisco / Los Angeles, CA / New York, NY / Seattle, WA, USA

    • Tech stack: Kubernetes, AWS, GCP, Docker, Python, Javascript, Java, Terraform

    • DevOps Engineer with Intrepid Studios

    • Salary: $98K to $137.2K a year

    • Location: based in the office in San Diego, CA, US

    • Tech stack: Kubernetes, AWS, GCP, Rancher, OpenShift, Helm, Docker, Go, Python, SQL

    • DevSecOps Engineer with Quanata

    • Salary: $200K to $275K a year

    • Location: remote from the United States

    • Tech stack: Kubernetes, Docker, Python, Powershell

    • Engineering Manager with Pulumi

    • Salary: $180.5K to $227.85K a year

    • Location: remote from the United States

    • Tech stack: Kubernetes, AWS, Azure, GCP, Pulumi

    • Machine Learning Engineer with Together AI

    • Salary: $160K to $230K a year

    • Location: based in the office in San Francisco, CA, USA

    • Tech stack: Kubernetes, Go, Python

Discover more Kubernetes jobs on Kube Careers →

Code & tools

  1. Chart-testing: linting and testing charts

    ct is a tool for testing Helm charts.

    It is meant for linting and testing pull requests and automatically detects charts changed against the target branch.

  2. KubeLinter

    KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure that applications adhere to best practices.

  3. Sealed secrets

    Sealed Secrets provides declarative Kubernetes Secret Management in a secure way.

    Since the Sealed Secrets are encrypted, they can be safely stored in a code repository.

  4. Kubeconform: manifests validator

    Kubeconform is a Kubernetes manifests validation tool.

    Similar to Kubeval, but with the following improvements:

    1. High performance.
    2. Remote or local schema locations
    3. Up-to-date schemas for all recent versions of Kubernetes.

  5. Kubedd: Kubernetes Migration

    devtron-labs

    Kubedd is a tool that checks for API-version compatibility and provides a migration path for Kubernetes objects.

Other interesting projects:

Upcoming Kubernetes events

  1. Apr

    24

    Kubernetes Community Days Budapest 2025

    In-person conference organized by KCD Budapest.

    • Location: Budapest, HU

    • This event requires an entrance fee

  2. Apr

    26

    Kubernetes Community Days Chennai 2025

    In-person conference organized by KCD Chennai.

    • Location: Chennai, IN

    • This event requires an entrance fee

  3. Apr

    28

    Advanced Kubernetes course (Singapore)

    In-person workshop organized by Learnk8s.

    • Location: Singapore, SG

    • This event requires an entrance fee

  4. Apr

    28

    Kubernetes Community Days Auckland, New Zealand 2025

    In-person conference organized by KCD New Zealand.

    • Location: Auckland, NZ

    • This event requires an entrance fee

      • Use kube.events to get 10% off

  5. Apr

    29

    GitOpsCon Europe 2025

    Online conference organized by CNCF.

    • This is a virtual event

    • This is a free event.

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

  1. 31

    days

    Kubernetes Community Washington DC 2025

    The Call For Paper is open until 26 May 2025 at UTC. More info →

    • Location: Washington, D.C., USA

    • In-person conference organized by KCD Washington DC.

    • The conference starts on the 16 September 2025.

    • Apply here

  2. 36

    days

    Cloud Native Days Austria

    The Call For Paper is open until 31 May 2025 at UTC. More info →

    • Location: Vienna, AT

    • In-person conference organized by CNDA Austria.

    • The conference starts on the 8 October 2025.

    • Apply here

  3. 9

    days

    Kubernetes Community Days Colombia 2025

    The Call For Paper is open until 5 May 2025 at UTC. More info →

    • Location: Medellín, CO

    • In-person conference organized by KCD Colombia.

    • The conference starts on the 29 August 2025.

    • Apply here

  4. 16

    days

    Kubernetes Community Days Lima, Perú 2025

    The Call For Paper is open until 12 May 2025 at UTC. More info →

    • Location: Lima, PE

    • In-person conference organized by KCD Lima, Perú.

    • The conference starts on the 19 July 2025.

    • Apply here

  5. 32

    days

    KubeCon + CloudNativeCon North America 2025

    The Call For Paper is open until 28 May 2025 at UTC. More info →

    • Location: Atlanta, GE, USA

    • In-person conference organized by Linux Foundation.

    • The conference starts on the 10 November 2025.

    • Apply here

  6. 51

    days

    Cloud Native Denmark 2025

    The Call For Paper is open until 16 June 2025 at UTC. More info →

    • Location: Aarhus, DK

    • In-person conference organized by CND.

    • The conference starts on the 17 April 2025.

    • Apply here

  7. 5

    days

    DevOps Pro Europe

    The Call For Paper is open until 30 April 2025 at UTC. More info →

    • Location: Vilnius, LT and virtual

    • Online & in-person conference organized by Data Miner.

    • The conference starts on the 20 May 2025.

    • Apply here

  8. 51

    days

    Devopsdays Tel Aviv

    The Call For Paper is open until 15 June 2025 at UTC. More info →

    • Location: Tel Aviv, IL

    • In-person conference organized by Devopsdays.

    • The conference starts on the 11 December 2025.

    • Apply here

  9. 5

    days

    Civo Navigate London

    The Call For Paper is open until 30 April 2025 at UTC. More info →

    • Location: London, UK

    • In-person conference organized by Civo.

    • The conference starts on the 30 September 2025.

    • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!

Or follow us on: