This week's articles
Octant
Do you know the feeling of having a dozen of terminals open (with something like `kubectl get xxx --watch`) while debugging an issue? Well, Octant is a web-based, highly extensible platform to better understand how applications run on a Kubernetes cluster. It offers a combination of introspective tooling, cluster navigation, and object management along with a plugin system to further extend its capabilities. I started using it recently and I personally love it.
Kubernetes Security Lab with Kind and Ansible
This is a project from raesene which aims to make use of Docker (and specifically Kind) to create a lab environment for testing Kubernetes exploits and security tools entirely locally on a single machine, without any requirement for remote resources or Virtual Machines. The project contains already a starter set of playbooks which will bring up clusters with specific misconfigurations that can be exploited, correlated with their own walkthroughs.
Deprecated APIs Removed In 1.16: Hereβs What You Need To Know
You might have heard that Kubernetes 1.16 has now been released. If so, you might have also heard that a bunch of old API paths/versions got removed (including security APIs). If (when) you upgrade you should be prepared for these breaking changes: Kubeval should help with catching these, as well as similar breaking changes in the future, in your CI pipelines.
|