Cloud Native Digest: Istio joins Phippy and friends
Open source projects worth checking out
ko
The open-source project “ko” is a simple and fast container image builder for Go applications. It is ideal for scenarios where the image contains a single Go application without many dependencies on the OS base image, such as no cgo or OS package dependencies. “ko” builds images by executing “go build” effectively on the local machine, eliminating the need for Docker installation. This makes it suitable for lightweight CI/CD use cases. “ko” supports multi-platform builds, generates Software Bill of Materials (SBOMs) by default, and includes support for simple YAML templating, making it a powerful tool for Kubernetes applications.
Longhorn
Longhorn is a distributed block storage system for Kubernetes. Longhorn is cloud-native storage built using Kubernetes and container primitives.
Longhorn is lightweight, reliable, and powerful. You can install Longhorn on an existing Kubernetes cluster with one kubectl apply command or by using Helm charts. Once Longhorn is installed, it adds persistent volume support to the Kubernetes cluster.
werf
werf is a CNCF Sandbox CLI tool to implement full-cycle CI/CD to Kubernetes easily. werf integrates into your CI system and leverages familiar and reliable technologies, such as Git, Dockerfile, Helm, and Buildah.
docker rollout
Docker CLI plugin that updates Docker Compose services without downtime.
Simply replace docker compose up -d <service> with docker rollout <service> in your deployment scripts. This command will scale the service to twice the current number of instances, wait for the new containers to be ready, and then remove the old containers.
Chart Testing
Chart Testing is the tool for testing Helm charts. It is meant to be used for linting and testing pull requests. It automatically detects charts changed against the target branch.
Technical recommendations
Case study: Containers health check mechanism crashes when application is over-loaded with requests
This article is a case study that discusses a production incident where the container’s health check mechanism crashed due to an overload of requests on a microservice. The author investigates the incident and shares interesting conclusions related to scaling and health check mechanisms. The article reveals that the excessive influx of requests overwhelmed the service, causing the health checks to fail and resulting in the continuous crashing and redeployment of containers. After a period of time, the service returned to normal as the requests timed out. The article suggests solutions for handling high application load, such as increasing the saturation limit of the system and modifying the way client requests are handled.
How to Debug Your Java Application In Kubernetes
This article provides a guide on how to debug Java applications in Kubernetes. The author explains the concept of Kubernetes pods and how to connect and debug Java applications within these pods. The article walks through the process of setting up the environment for remote debugging and shares best practices for Java debugging in Kubernetes. By following the recommended approach and utilizing the right tools, developers can effectively debug their Java applications running in Kubernetes pods, making the debugging process smoother and more efficient.
What’s new in cloud native
Istio joins Phippy and friends — Welcome Izzy!
Having sailed into, and proudly graduated within the Cloud Native Computing Foundation in 2023, it is now time for Istio to join the CNCF Phippy family’s mission to demystify and simplify cloud native computing.
The Istio Steering Committee is excited to unveil Izzy Dolphin, the Istio Indo-Pacific Bottlenose, who today dives into the family of “Phippy and Friends”.
Podman Desktop 1.8 Release
This release introduces:
- Podman 4.9.3: Podman 4.9.3 is now included in both Windows and Mac installers.
- Kubernetes Explorer: Advanced UI and new tools for working with Kubernetes clusters.
- Global Onboarding: Configure and set up your environment without any hassle, with a set of guided workflows.
- Learning Center: Discover new use cases and capabilities for developers.
- Extension API Improvements: Another big update to the extension API enabling more goodness for 🦭 Podman Desktop’s extensions.
- Enhanced Builds, Pods List, and Troubleshooting Pages: Build for different platforms, an upgraded pods view, and more.
Secret leakage in public GitHub repositories increasing, claims new report
According to the report from GitGuardian, the number of newly leaked secrets in public GitHub repositories reached 12.8 million in 2023, which is a 28% increase compared to the previous year. The report is based on scans of public GitHub repositories, including source code, issues, Gists, and comments. Despite GitGuardian sending email alerts when exposed secrets are found, the report states that 90% of the secrets remain active for at least five days.
About KubeSphere
KubeSphere is an open source container platform built on top Kubernetes with applications at its core. It provides full-stack IT automated operation and streamlined DevOps workflows.
KubeSphere has been adopted by thousands of enterprises across the globe, such as Aqara, Sina, Benlai, China Taiping, Huaxia Bank, Sinopharm, WeBank, Geko Cloud, VNG Corporation and Radore. KubeSphere offers wizard interfaces and various enterprise-grade features for operation and maintenance, including Kubernetes resource management, DevOps (CI/CD), application lifecycle management, service mesh, multi-tenant management, monitoring, logging, alerting, notification, storage and network management, and GPU support. With KubeSphere, enterprises are able to quickly establish a strong and feature-rich container platform.
To stay updated, visit our official website or follow us on Twitter.
