| |
| 🔗 Stories, Tutorials & Articles |
| |
|
| |
| Kernel-level container insights: Utilizing eBPF with Cilium, Tetragon, and SBOMs for security |
| |
| |
| eBPF, Cilium's Tetragon, and SBOMs are the dream team for exposing real-time kernel-level drama inside containers. When these powers combine, they hunt down surprise breaches like Log4Shell with a sleuth's precision. Bonus: they shave off 20% from CPU usage while they're at it. |
|
| |
|
| |
|
| |
| What Would a Kubernetes 2.0 Look Like |
| |
| |
| Kubernetes rewrites the rulebook on infrastructure. Suddenly, scaling isn't a headache—it's an art. But then there's YAML. With its peculiar quirks and knack for screwing up, it feels more like a punchline than a solution. Enter Helm and its template circus, juggling dependencies with all the grace of a three-legged mule. Maybe it's time to trade that chaos for HCL or some built-in remedy. Because Kubernetes doesn't do messy. |
|
| |
|
| |
|
| |
| State of App Dev: Security |
| |
| |
| Security isn’t just for the IT crowd anymore. Everyone's on duty. Only 1% of developers bother to look the other way. A mere 20% of organizations throw money at outsiders to handle it. The real trip wire? Planning. It derails teams faster than you'd believe. |
|
| |
|
| |
|
| |
| GitOps for Kubernetes With Nixidy and ArgoCD |
| |
| |
| Nixidy turns Kubernetes YAMLs into sleek, declarative Nix setups. It offers a robust, repeatable config flow—even for those complex Helm charts. Spice up your deployment by pairing ArgoCD with encrypted secrets via sops-secrets-operator. Now you can wrangle sensitive data in Git with style—and security. |
|
| |
|
| |
|
| |
| Why Chose OCI Artifacts for AI Model Packaging |
| |
| |
| Docker Model Runner injects LLMs into OCI artifacts, seamlessly marrying model delivery with container rituals. No need to invent custom toolchains. Think uncompressed "layers"—they're the secret sauce for faster, sharper, more efficient Model-Runner magic. It's not just a change; it's a quantum leap for AI devs everywhere. |
|
| |
|
| |
|
| |
| The Ultimate Guide to Running Kubernetes in a Home Lab |
| |
| |
| K3s and MicroK8s shine in makeshift home labs with minimal hardware. Throw in Longhorn for storage and Velero for backup bliss. Now that's a recipe for tech nirvana. |
|
| |
|
| |
|
| |
| Interesting Kubernetes application demos |
| |
| |
| Kubeapps is your backstage pass to deploying and controlling K8s apps with style. Dive into a treasure chest of Helm charts ready to roll. For those looking to jazz up a demo, unleash Kubedoom or Kubevaders. Obliterate pods for stress-testing, or just because you can. Craving some retro-futuristic fun? Check out Eric Jadi's fascinating project: wrangle K8s workloads through Minecraft. |
|
| |
|
| |
|
| |
| Publishing a Docker container for Microsoft Edit to the GitHub Container Registry |
| |
| |
| Edit hits GitHub's Container Registry like a buzzsaw, powered by Docker. Built for Apple Silicon, it rides Alpine like a speed demon. No fuss, just raw efficiency. |
|
| |
|
| |
|
| |
| A Journey Through Kafkian SplitDNS in a Multitenant Kubernetes Offering |
| |
| |
| SCHIP faced off with tenant demands for serverless Kafka. Their weapon of choice? A crafty DNS trick using CoreDNS and a few clever node-local DNS adjustments. They kept multitenancy alive and kicking without wearing out the ops team. Nice move. |
|
| |
|
| |
|
| |
| NSEnter and Kubernetes |
| |
| |
| nsenter is your backstage pass to a Kubernetes node. It plays with Linux namespaces, crashing through isolation walls for a direct look inside. Summon it with PID 1 and proper permissions, and you're deep in the node's core. No middleman required. |
|
| |
|
| |
|
| |
| How We Designed Model Runner and What’s Next |
| |
| |
| Docker's just unleashed a new gadget with Desktop 4.40. Meet the Model Runner, your ticket to running AI models on your local machine. Imagine it as the Peacekeeper of container-host diplomacy. It’s powered by llama.cpp and can ride GPUs like a pro skater. Oh, and it plays nice with the OpenAI API. Models strut their stuff at /models endpoints, mirroring images in Docker's world. Get ready for some heavy-duty AI magic. |
|
| |
|
| |
|
| |
| End to End Argo-Workflow for CI/CD |
| |
| |
| Argo Workflows isn't just another tool; it sings for Kubernetes-native CI/CD. It juggles complex workflows as DAGs, brings dynamic execution to life with CRDs and parameters. Got a weekly CI? Automate it with CronWorkflows. Secure those Docker pushes using Kubernetes secrets, and let shared volumes harmonize task coordination. It's like magic for your clusters. |
|
| |
|
| |
👉 Got something to share? Create your FAUN Page and start publishing your blog posts, tools, and updates. Grow your audience, and get discovered by the developer community. |
