If we want to be certain that what we’re running is what we built, we might need to sign container (Docker) images, as well as other types of artifacts. That’s where Cosign jump in. Sigstore Cosign makes signatures invisible, especially if we combine it with Kyverno or other Kubernetes admission controller solutions.
Continue readingTag Archives: k8s
Kubernetes Policies And Admission Controllers Compared – Kyverno vs Datree
Which tool for Kubernetes policies and admission controllers works better? Kyverno or Datree?
Continue readingScaleway – Everything We Expect From A Cloud Computing Service?
Scaleway claims that it is the most complete cloud computing service. Is it true? Let’s find out.
Continue readingAdmission Controllers Or CLI? Kubernetes Policy Validations with Datree
Datree is known as a great solution for client-side manifest scanning and policy enforcement. That just changed with the introduction of Kubernetes admission controllers. Datree now supports both, so it’s time to revisit the project and see whether it is a good choice for server-side validations and policy enforcement.
Continue readingGateway API – Ingress And Service Mesh Spec Replacement?
Ingress and service mesh specifications are about to be replaced with Gateway API. Let’s see it in action!
Continue readingCloud And Kubernetes Cost Reporting With CAST AI
Exploring CAST AI as a way to combine scaling with cost reporting of cloud and Kubernetes resources.
Continue readingCarvel ytt Instead Of Helm? A Better Way To Manage Kubernetes Resources?
VMWare Carvel ytt is yet another attempt to replace Kubernetes Helm. Is it any good?
Continue readingHelm And Kustomize Replacement? Jsonnet With Grafana Tanka
Can Jsonnet with Tanka replace Helm and Kustomize?
Continue readingEliminate Kubernetes Secrets With Secrets Store CSI Driver (SSCSID)
“Kubernetes secrets are not secure enough!” If that’s true, maybe we should eliminate them altogether. Can we do that? Can we live without Kubernetes secrets? Is Secrets Store CSI Driver (SSCSID) the solution?
Continue readingKEDA: Kubernetes Event-Driven Autoscaling
Kubernetes Horizontal Pod Autoscaler (HPA) is limited to memory and CPU metrics. It can be extended with custom metrics, but that might not be enough either. KEDA (Kubernetes Event-Driven Autoscaling) might be the solution for all (horizontal) scaling needs.
Continue reading