Cloud Native Digest: CNCF Fuzzing updates 2023

Open source projects worth checking out

Inspektor Gadget

Inspektor Gadget is a collection of tools (or gadgets) to debug and inspect Kubernetes resources and applications. It manages the packaging, deployment and execution of eBPF programs in a Kubernetes cluster, including many based on BCC tools, as well as some developed specifically for use in Inspektor Gadget. It automatically maps low-level kernel primitives to high-level Kubernetes resources, making it easier and quicker to find the relevant information.

Kairos

Kairos (formerly c3os) is an open-source project which brings Edge, cloud, and bare metal lifecycle OS management into the same design principles with a unified Cloud Native API.

KubeConfig-Merger

kubeconfig-merger is a command-line tool that concatenates two Kubernetes configuration files (kubeconfig files) into a single file. The resulting file can be used as a single kubeconfig file to manage multiple Kubernetes clusters.

Technical recommendations

The New In-Place Kubernetes Pod Resource Resizing Feature: A Deep Dive

In summary, the article delves into the in-place pod resource resizing feature in Kubernetes, explaining its functionality, benefits, and usage. It serves as a comprehensive guide for trying out this feature and highlights its significance in optimizing resource allocation and management in Kubernetes environments.

BACKUP AND RESTORE ON KUBERNETES HA CLUSTER

Overall, the article provides a clear guide with step-by-step instructions and example commands for performing backup and restore operations on a Kubernetes HA cluster. It is valuable for readers who want to understand how to protect and recover their Kubernetes clusters.

What’s new in cloud native

CNCF Fuzzing updates 2023

Fuzzing is a central role in today’s software development practices for ensuring secure and reliable software.

A central role in assisting developers to apply fuzzing is developing reference materials that can be easily consumed and describe clearly how to apply fuzzing on a given software package. Improving this has been a large part of our efforts in recent months, and to this end we are happy to announce that we have created a fuzzing handbook that introduces fuzzing in a manner that uses fully open source frameworks for fuzzing.

eBPF Kubernetes Security Tool Tetragon Improves Performance and Stability

Isovalent has announced the 1.0 release of Cilium Tetragon, their eBPF-based Kubernetes security observability and runtime enforcement tool. Policies and filters can be applied directly via eBPF to monitor process execution, privilege escalations, and file and network activity.

The 1.0 release brings stability and performance improvements to Tetragon. The main focus of the release was to substantially minimize the performance overhead of running Tetragon.The release also adds a library of default observability policies.

About KubeSphere

KubeSphere is an open source container platform built on top Kubernetes with applications at its core. It provides full-stack IT automated operation and streamlined DevOps workflows.

KubeSphere has been adopted by thousands of enterprises across the globe, such as Aqara, Sina, Benlai, China Taiping, Huaxia Bank, Sinopharm, WeBank, Geko Cloud, VNG Corporation and Radore. KubeSphere offers wizard interfaces and various enterprise-grade features for operation and maintenance, including Kubernetes resource management, DevOps (CI/CD), application lifecycle management, service mesh, multi-tenant management, monitoring, logging, alerting, notification, storage and network management, and GPU support. With KubeSphere, enterprises are able to quickly establish a strong and feature-rich container platform.

To stay updated, visit our official website or follow us on Twitter.