Learn Kubernetes Weekly issue 35
Mitigating memory leaks with 1 line, tracing the path of network traffic, kustomize feeder repository, in-place pod resource resizing
12 Jul 2023
Articles
How do we mitigate memory leak in Kubernetes with a one-liner commit
Muhammet Ozekli
The Trendyol team noticed that the primary gateway API returned 503 errors after 18:00 at weekends — when the RPMs are higher (~100 Million rpm as daily peak).
In this post-mortem, you'll follow their journey as they identified and fixed the issue.
Tracing the path of network traffic in Kubernetes
Kristijan Mitevski
In this article, you will learn how packets flow inside and outside a Kubernetes cluster: starting from the initial web request to the application's container.
Writing Kubernetes manifests with kustomize feeder repository
Christopher Lane
In this case study, you'll learn how the team at Chick-fil-A uses Kustomize and a "feeder repository" to lower the barrier to entry for app teams.
Developers can pull in predefined manifests and "patch-in" any changes for their particular application.
My first experience with Kyverno: 🤯🤩
Mathieu Benoit
Kyverno is a Kubernetes policy engine that can enforce policies like required labels, container image signing, resource existence, etc.
It has a library of ready-to-use policies and allows for easy evaluation with its CLI.
Learn more in this post.
Scaling video encoding with Node.js and Kubernetes
Patrick Kalkman
The article explains how the default Kubernetes autoscaling isn't always the best choice.
The team adopted the Horizontal Pod Autoscaler to scale workloads for encoding videos but found themselves switching to a custom autoscaler.
Nigel Douglas
OWASP Kubernetes is aimed at helping security practitioners, sysadmins, and software developers prioritize risks around the Kubernetes ecosystem.
In this article, you will find the top 10 risks you should consider and mitigations you could adopt.
Articles worth checking out:
⎈ Become an expert in Kubernetes: Advanced Kubernetes course
Learnk8s
Join Learnk8s' 4-day Advanced Kubernetes workshop this September (online or in London, UK).
Get your hands dirty with Kubernetes and learn what makes Kubernetes tick in a session packed with hands-on labs!
Tutorials
Desktop client for Kubernetes: Aptakube
Aptakube
Aptakube is a fast, lightweight and modern GUI for Kubernetes.
Avoid context switching by connecting to multiple clusters simultaneously! Metrics, Aggregated Log Viewer, Quick Actions, YAML Editor, and more — all sleekly bundled into a compact app!
sponsored
Trying out the new in-place Pod Resource Resizing!
Karla Saur
The new in-place Pod Resource Resizing feature enables you to automatically resize a pod's CPU, memory limits, and requests without restarting it.
Learn how it works in this tutorial.
Robusta.dev
Do dozens of clusters mean dozens of Prometheus alerts?
Connect Robusta and make sense of all your existing alerts and clusters in a single pane of glass.
sponsored
Kubernetes cluster with OCI free-tier and Raspberry Pi4
Ștefănescu Liviu
In this 4-part series, you'll learn how to build a Kubernetes cluster (using K3s) with 4x OCI free-tier ARM instances and 4x Raspberry Pi 4.
AWS Secrets Manager in Kubernetes: secret rotation and reloader
Chokkalingam K (CK)
In this tutorial, you'll look at how to configure EKS to use secrets and parameters from Amazon Secrets Manager and AWS Systems Manager Parameter Store.
More tutorials:
Code & tools
2-alchemists/krossboard-kubernetes-operator
Krossboard is a multi-cluster and cross-distribution Kubernetes usage accounting and analytics software.
Each instance of Krossboard enables tracking the usage of a set of Kubernetes clusters listed in a kubeconfig secret.
NHD is a topology-aware custom scheduler aware of low-level hardware details, such as CPU count, hyperthreading, GPUs, NUMA nodes, NICs, and more.
The scheduler makes better decisions than the default Kubernetes scheduler for workload placement.
cert-manager/aws-privateca-issuer
AWS ACM Private CA is a module of the AWS Certificate Manager that can set up and manage private CAs.
This project acts as an addon to cert-manager that signs off certificate requests using AWS PCA.
Config Syncer keeps ConfigMaps and Secrets synchronized across namespaces and/or clusters.
geovane-silva/restarting-pods-report
This repository contains a Python script that uses the Kubernetes Python client to list the pods that restarted on a given period.
Other interesting projects:
Upcoming Kubernetes events
Jul
12
Securing mariner container host workloads on AKS
Online meetup organized by Microsoft Reactor London.
This is a virtual event
This is a free event.
Jul
13
Low overhead automated distributed tracing with help of eBPF & Introduction to Skupper
Online & in-person meetup organized by Dutch Kubernetes/Cloud-Native Meetup.
Location: Amsterdam, NL and virtual
This is a free event.
Jul
15
Kubernetes: advanced storage concepts
Online meetup organized by BlueCoders.
This is a virtual event
This is a free event.
Jul
17
Kubernetes Community Days Munich 2023
In-person conference organized by KCD Munich.
Location: Munich, DE
This event requires an entrance fee
Jul
19
Online conference organized by DevOps Institute.
This is a virtual event
This is a free event.
Jul
29
Kubernetes Community Days Taiwan 2023
Online & in-person conference organized by KCD Taiwan.
Location: Taipei, TW and virtual
This is a free event.
Aug
22
Online conference organized by DevNetwork.
This is a virtual event
This event requires an entrance fee
Discover more Kubernetes events on Kube Events →
Kubernetes Call for Papers
expired
Wearedevelopers World Congress
The Call For Paper was open until 19 July 2023 at UTC. More info →
Location:
In-person conference organized by WeAreDevelopers.
The conference starts on the 27 July 2023.
- Apply here
expired
Kubernetes Community Days Austria 2023
The Call For Paper was open until 31 July 2023 at UTC. More info →
Location: Vienna, AT
In-person conference organized by KCD Austria.
The conference starts on the 26 September 2023.
- Apply here
expired
The Call For Paper was open until 7 August 2023 at UTC. More info →
Location: Chicago, IL, USA
In-person conference organized by DoK.
The conference starts on the 6 November 2023.
- Apply here
expired
The Call For Paper was open until 7 August 2023 at UTC. More info →
Location: Chicago, IL, USA
In-person conference organized by Linux Foundation.
The conference starts on the 6 November 2023.
- Apply here
expired
The Call For Paper was open until 19 August 2023 at UTC. More info →
Location: Cairo, EG
In-person conference organized by Devopsdays.
The conference starts on the 26 September 2023.
- Apply here
expired
The Call For Paper was open until 28 August 2023 at UTC. More info →
This is a virtual event
Online conference organized by Conf42.
The conference starts on the 28 September 2023.
- Apply here
expired
Kubernetes Community Days Texas
The Call For Paper was open until 30 August 2023 at UTC. More info →
Location: Irving, Texas, USA
In-person conference organized by KCD Texas.
The conference starts on the 6 October 2023.
- Apply here
expired
The Call For Paper was open until 5 September 2023 at UTC. More info →
Location: Chicago, US
In-person conference organized by Cloud Native Rejekts.
The conference starts on the 4 November 2023.
- Apply here
expired
The Call For Paper was open until 11 September 2023 at UTC. More info →
Location: Tokyo, JP and virtual
Online & in-person conference organized by Linux Foundation.
The conference starts on the 5 December 2023.
- Apply here
Until next time!
— Dan
Subscribe and, every Wednesday, receive the latest Kubernetes news!