Cloud Native Digest: Istio’s ambient mode reaches Beta in v1.22

3 min readMay 27, 2024


Open source projects worth checking out


Kraken is a P2P-powered Docker registry that focuses on scalability and availability. It is designed for Docker image management, replication, and distribution in a hybrid cloud environment. With pluggable backend support, Kraken can easily integrate into existing Docker registry setups as the distribution layer.

E2E Framework

A Go framework for end-to-end testing of components running in Kubernetes clusters.


TopoLVM is a CSI plugin using LVM for Kubernetes. It can be considered as a specific implementation of local persistent volumes using CSI and LVM.


Shell-operator is a tool for running event-driven scripts in a Kubernetes cluster.

Technical recommendations

Helm — Templating Network Policy using Helm

This article demonstrates how to use Helm for templating network policies to manage network access control within Kubernetes clusters. It delves into utilizing Helm Charts and Helm templates to generate network policies, providing examples and steps to achieve this goal.

Running JVM Applications on Kubernetes: Beyond java -jar

This article explores methods for running JVM applications on Kubernetes, going beyond traditional Java JAR file deployments. The author discusses the challenges of deploying JVM applications using Docker and Kubernetes and proposes a more flexible, scalable approach by utilizing Kubernetes Operators to manage the lifecycle and resources of the applications. The article delves into the advantages of this approach and provides practical examples and best practices recommendations.

gRPC Name Resolution & Load Balancing on Kubernetes: Everything you need to know

This article comprehensively covers gRPC name resolution and load balancing in detail, providing an in-depth understanding of the concepts and their implementations. It discusses various name resolution and load balancing strategies supported by gRPC, such as DNS, static configuration, and custom resolvers, along with their advantages and trade-offs. Additionally, the article explores gRPC’s integration with Kubernetes and other service discovery systems, offering insights into best practices and practical examples for efficient service communication in distributed systems.

What’s new in cloud native

AI Lab Extension Allows Podman Desktop Users to Experiment with LLMs Locally

One year after its 1.0 release, Podman Desktop announced the Podman AI Lab plugin, promising to help developers start working with Large Language Models (LLM) on their machines. Podman AI Lab streamlines LLM workflows featuring generative AI exploration, built-in recipe catalogue, curated models, local model serving, OpenAI-compatible API, code snippets, and playground environments.

The plugin intends “to democratize” gen AI for application developers and to close the gap between “it works on my machine” and that it runs in production on hybrid clouds.

Say goodbye to your sidecars: Istio’s ambient mode reaches Beta in v1.22

Today, Istio’s revolutionary new ambient data plane mode has reached Beta. Ambient mode is designed for simplified operations, broader application compatibility, and reduced infrastructure cost. It gives you a sidecar-less data plane that’s integrated into your infrastructure, all while maintaining Istio’s core features of zero-trust security, telemetry, and traffic management.

This is a huge milestone for Istio, bringing both Layer 4 and Layer 7 mesh features to production readiness without sidecars.

About KubeSphere

KubeSphere is an open source container platform built on top Kubernetes with applications at its core. It provides full-stack IT automated operation and streamlined DevOps workflows.

KubeSphere has been adopted by thousands of enterprises across the globe, such as Aqara, Sina, Benlai, China Taiping, Huaxia Bank, Sinopharm, WeBank, Geko Cloud, VNG Corporation and Radore. KubeSphere offers wizard interfaces and various enterprise-grade features for operation and maintenance, including Kubernetes resource management, DevOps (CI/CD), application lifecycle management, service mesh, multi-tenant management, monitoring, logging, alerting, notification, storage and network management, and GPU support. With KubeSphere, enterprises are able to quickly establish a strong and feature-rich container platform.

To stay updated, visit our official website or follow us on Twitter.




KubeSphere ( is an open source distributed operating system providing cloud native stack with Kubernetes as its kernel.