InfoQ Homepage Kubernetes Content on InfoQ
-
Reddit Unveils REV2: Modernised Rule-Execution with Kubernetes, Kafka, and Flink Stateful Functions
Reddit's Safety Engineering team recently published how it modernised its Rule-Execution system, which detects and acts on policy-violating content in real time. The new architecture includes improvements like transitioning from legacy EC2-based systems to Kubernetes, better rule version control with Github and S3 storage, and the capability to scale more efficiently with Flink Stateful Functions.
-
CRI-O Graduates from CNCF, Sees Increased Adoption in Cloud Native Environments
The Cloud Native Computing Foundation announced the graduation of the CRI-O project which provides a secure, performant, and stable Container Runtime Interface (CRI) implementation for kubelet in Kubernetes production environments. The project has been adopted by seven new organizations, released 11 new minor versions, and had more than 4,000 commits to the main branch.
-
LF Asia & CNCF Kick off KubeCon+CloudNativeCon+Open Source Summit China 2023
KubeCon + CloudNativeCon + Open Source Summit China 2023 kicked off this week in Shanghai. It’s the premier event for developers, technologists, and technology leaders in Asia concerning all things Open Source, Kubernetes, and Cloud Native. The event attracted over 2000 attendees and 20 sponsors and included 150 sessions.
-
Linkerd 2.14 Improves Support on Flat Networks and Gateway API Conformance
Version 2.14 of Linkerd, a service mesh and graduated CNCF project, has been released, with improved enterprise multi-cluster support, full Kubernetes Gateway API conformance, and many other changes.
-
Kubernetes 1.28 Released with New Repositories and Fixes for Privilege Escalation in Windows
The Cloud Native Computing Foundation (CNCF) released Kubernetes 1.28 named Planternetes. The release has new features such as mixed version proxy, support for CDI injection into containers, and sidecar container awareness.
-
HashiCorp Vault Secrets Operator for Kubernetes Moves into General Availability
HashiCorp has moved the HashiCorp Vault Secrets Operator for Kubernetes into general availability. This Kubernetes Operator combines Vault's secret management tooling with the Kubernetes Secrets cache. The operator also handles secret rotation and has controllers for the various secret-specific custom resources.
-
Grafana Beyla Provides Auto-Instrumented Observability through eBPF
Grafana has released Grafana Beyla, an open-source eBPF auto-instrumentation tool for application observability. Beyla is able to report span information and RED metrics (Rate-Errors-Duration) for both Linux HTTP/S and gRPC services. This is accomplished without having to make code modifications for inserting probes.
-
Ngrok Starts Offering One Static Domain to All of its Free Users
To make it easier for developers to expose their local services to the Internet while developing them, ngrok is now providing them with the possibility to create and use one static domain for free, instead of relying on time-limited, random domains.
-
Kubeflow, the Machine Learning Toolkit for Kubernetes, Has Been Accepted as CNCF Incubation Project
The Cloud Native Computing Foundations (CNCF) has recently announced that Kubeflow, the toolkit to deploy machine learning (ML) workflow onto Kubernetes, was accepted as a CNCF incubating project after the vote of the Technical Oversight Committee (TOC).
-
Pinterest Revamps Its Asynchronous Computing Platform with Kubernetes and Apache Helix
Pinterest created the next-generation asynchronous computing platform, Pacer, to replace the older solution, Pinlater, which the company outgrew, resulting in scalability and reliability challenges. The new architecture leverages Kubernetes for scheduling job-execution workers and Apache Helix for cluster management.
-
Faster Container Startup in AWS Fargate with Seekable OCI
AWS recently announced support for Seekable Open Container Initiative (SOCI) with AWS Fargate. SOCI enables lazy-loading of images which reduces container start-up times on Amazon Elastic Container Service (ECS). In addition, AWS released two tools, SOCI Index Builder and SOCI Snapshotter, to help its customers take advantage of this new functionality.
-
Detecting Malicious Behaviour in GKE Using OSS Memory Analysis Tools
The Spotify R&D team recently shared how they analyze the memory of a Google Kubernetes Engine (GKE) cluster node when suspicious behaviour is detected. The primary goal is to understand if something malicious is occurring within their workloads. A new methodology they developed is based on dumping the kernels of the cluster nodes using open source tools: AVML, dwarf2json, and Volatility 3.
-
Microsoft Announces Preview of Azure Application Gateway for Containers
Microsoft recently announced the preview of Azure Application Gateway for Containers - a new application (layer 7) load balancing and dynamic traffic management product for workloads running in a Kubernetes cluster. It extends Azure's Application Load Balancing portfolio and is a new offering under the Application Gateway product family.
-
Yelp Rebuilds Corrupted Cassandra Cluster Using Its Data Streaming Architecture
Yelp created a solution to sanitize data from the corrupted Apache Cassandra cluster utilizing its data streaming architecture. The team explored many potential options to address the data corruption issue, however, ultimately had to move the data into a new cluster to remove corrupted records in the process.
-
Instacart Creates a Self-Serve Apache Flink Platform on Kubernetes
Instacart moved their Apache Flink workloads from AWS EMR to Kubernetes to meet the high demand for data processing use cases using Flink within the organization, as using EMR became problematic for many teams with different requirements. As a result, they made the platform easier to use and reduced their operational and infrastructure costs.