Learn Kubernetes weekly — issue 23

19 Apr 2023

  1. Using topology aware hints in EKS

    Ratnopam Chakrabarti

    Topology Aware Hints is a new feature in EKS that reduces data transfer costs by keeping traffic within the same availability zone.

    It uses Pod Topology Spread Constraints to spread Pods evenly onto multiple node topologies.

    Learn more in this article.

  2. Advanced secret management on Kubernetes with Pulumi and GitOps: Sealed Secrets controller

    Engin Diri

    In this tutorial, you will find an example of how to manage secrets on Kubernetes with Pulumi and GitOps using Sealed Secrets and ArgoCD.

  3. 12 scanners to find security vulnerabilities and misconfigurations in Kubernetes

    Walid El Sayed Aly

    In this article, you will have a look at 12 security scanners for Kubernetes.

  4. Kubernetes API server discovery

    Patrick Eichler

    In this article, you will explore the Kubernetes API and interact with it directly.

  5. Step by step guide: how to create a dynamic service endpoint via Kubernetes API

    Andrey Orlov

    This article explains how to deploy Redis HA in Kubernetes and create a Service that always points to the master Redis.

    It also demonstrates how to interact with Kubernetes API from inside a pod using a script to update the endpoint dynamically.

  6. Ingress in Google Kubernetes products

    Sergey Shcherbakov

    In this article, you will discuss, enumerate and compare all the options you have to route traffic into a Kubernetes cluster running in Google Cloud (GKE) or on-premise (Anthos on Bare Metal, Anthos on VMware).

  1. Limiting access to Kubernetes resources with RBAC

    Arthur Chiao

    Learn how to recreate the Kubernetes RBAC authorization model from scratch and practice the relationships between Roles, ServiceAccounts, RoleBindings, etc.

  2. Effortlessly deploys to AKS with Draft and Acorn

    Paul Yu

    In this article, you'll learn how to deploy a web application to Azure Kubernetes Service (AKS) without writing any Docker or Kubernetes manifest files.

    Instead, you'll use Draft and Acorn.

  3. Partial Helm values encryption using AWS KMS with ArgoCD

    Samuel Bagattin

    In this blog post, you'll learn how to encrypt only specific yaml fields in values.yaml, and how to configure ArgoCD to decrypt these secrets on the fly before installing a Helm release.

  4. Create temporary environments from Pull Requests with ArgoCD ApplicationSet

    Jérôme Decoster

    In this post, you'll learn how to create a new environment for each pull request with ArgoCD.

    • Creating a Pull Request creates a new environment.
    • Each git push builds an image and updates the app.
    • Closing the pull request terminates the environment.
  5. How to deploy a containerized web app in a Kubernetes cluster using Amazon EKS

    F. Raisa Iftekher

    In this tutorial, you'll learn how to deploy a containerized Python web application on a Kubernetes cluster using AWS CDKv2, EKS, and ECR.

More tutorials:

    • Software Engineer with Reddit

    • Salary: $198.2K to $297.3K a year

    • Location: remote from the United States

    • Tech stack: Kubernetes, Docker, Rust, Go, Python, C++, Java, SQL, Terraform

    • DevOps Engineer with Gemba Advantage

    • Salary: £40K to £90K a year

    • Location: based in the office (and remote from home) in Remote-Hybrid (London)

    • Tech stack: Kubernetes, AWS, Docker, Java, Python, Go, Terraform, Cloudformation, CDK, Prometheus

Discover more Kubernetes jobs on Kube Careers →

  1. kubewharf/kubebrain

    KubeBrain is a project that aims to replace etcd with a pluggable storage engine for Kubernetes.

  2. aws-samples/hardeneks

    hardeneks is a tool that runs checks to see if an EKS cluster follows EKS Best Practices.

  3. groundnuty/k8s-wait-for

    k8s-wait-for is a simple script that allows waiting for a Kubernetes service, job or pod to enter the desired state.

  4. cyberark/kubeletctl

    Kubeletctl is a command line tool that implements kubelet's API and can:

    • Run any kubelet API call.
    • Scan for nodes exposing the kubelet API.
    • Run a command on all the available containers by kubelet simultaneously.

    And more.

  5. oslabs-beta/palaemon

    Palaemon is an open-source developer tool for monitoring health and resource metrics of Kubernetes clusters and analyzing Out of Memory (OOMKill) errors.

Other interesting projects:

Upcoming Kubernetes events

  1. Apr


    Advanced Kubernetes course

    Online workshop organized by Learnk8s.

    • This is a virtual event

    • This event requires an entrance fee

  2. Apr


    DevOps Conference London

    Online & in-person conference organized by DevOps conference.

    • Location: London, UK and virtual

    • This event requires an entrance fee

  3. Apr


    Getting started with Kubernetes on Azure

    Online webinar organized by Pulumi.

    • This is a virtual event

    • This is a free event.

  4. Apr


    Getting started with Kubernetes on AWS

    Online workshop organized by Pulumi.

    • This is a virtual event

    • This is a free event.

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

  1. expired

    Kubeday Israel

    The Call For Paper was open until 23 April 2023 at UTC. More info →
    • Location: Tel Aviv, IL

    • In-person conference organized by Linux Foundation.

    • The conference starts on the 19 June 2023.

    • Apply here
  2. expired

    Devopsdays New York City

    The Call For Paper was open until 24 April 2023 at UTC. More info →
    • Location: New York, NY, USA

    • In-person conference organized by Devopsdays.

    • The conference starts on the 6 June 2023.

    • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!

Or follow us on: