Open in app

Sign in

Write

Sign in

Cloud Native Digest: Microcks Joining CNCF as a Sandbox Project

KubeSphere
4 min readJul 3, 2023

--

Open source projects worth checking out

Kubent

Kube No Trouble (kubent) is a simple tool to check whether you’re using any of these API versions in your cluster and therefore should upgrade your workloads first, before upgrading your Kubernetes cluster.

This tool will be able to detect deprecated APIs depending on how you deploy your resources, as we need the original manifest to be stored somewhere.

kdoctor

kdoctor is a cloud native project of data plane test, which is derived from practices of the production operation and maintenance. Through the pressure injection, it realizes the active inspection for the function and performance of the cluster. kdoctor can be applied to scenarios:

  • inspection after creating new cluster, daily operation and maintenance.
  • E2E testing, bug reproduction, chaos testing.

node-problem-detector

node-problem-detector aims to make various node problems visible to the upstream layers in the cluster management stack. It is a daemon that runs on each node, detects node problems and reports them to apiserver. node-problem-detector can either run as a DaemonSet or run standalone. Now it is running as a Kubernetes Addon enabled by default in the GKE cluster. It is also enabled by default in AKS as part of the AKS Linux Extension.

Technical recommendations

Event-Driven Autoscaling on Kubernetes with KEDA

This article is a very practical guide to KEDA, providing basic knowledge and practical examples about how to achieve event-driven autoscaling on Kubernetes using KEDA, as well as some best practices and tips on how to use KEDA.

Kubernetes Workload Management using Karpenter

This article provides a very practical guide to Karpenter, introducing how to use Karpenter for Kubernetes workload management, including installation, configuration, and advanced features.

What’s new in cloud native

Microcks Joining CNCF as a Sandbox Project

Microcks, the open-source API mocking and testing project, has been accepted as a Sandbox project by the Cloud Native Computing Foundation (CNCF).

Microcks is a very useful and feature-rich API mock and testing management platform that can help developers and testers quickly create and manage API mocks and test cases, thereby improving the quality and reliability of APIs.

KSOC Labs Release the First Kubernetes Bill of Materials (KBOMs)

KSOC labs recently announced the release of the first Kubernetes Bill of Materials(KBOMs). KBOM is an open source standard and command-line tool that helps security teams quickly analyze cluster configurations and respond to CVEs.

The project includes an initial specification and implementation that works across cloud providers, on-prem, and DIY environments.

The initial specification in JSON provides detailed information about the different components of a cluster in addition to instances, Kubernetes objects, and container images for both internal and hosted applications.

Such information can be helpful for security and compliance teams to look at a Kubernetes cluster as a single unit and quickly identify vulnerabilities and threats without necessarily having to look at the underlying components individually.

KBOM gives a quick rundown of a Kubernetes cluster such as:

  • Cluster size in terms of the workload count
  • Cost and type of nodes on a cloud provider
  • Vulnerabilities for Kubernetes-related components and hosted application images
  • Third-party customizations and plugs such as custom resources, authentication, and survive mesh
  • Version details of the platform and its components

Microsoft Developer Proxy chaos engineering tool updated to check for excessive permissions granted by 365 apps

Microsoft has updated a utility designed to test applications that call the Microsoft Graph or other 365 APIs, to add guidance when developers have inadvertently granted unnecessary permissions to logged in users.

The company has been low-key about its Developer Proxy tool, currently in “community preview”, yet it has good potential to improve the security and resilience of custom applications which use Microsoft Graph, an API for the various services that make up the 365 platform. The tool runs on the developer’s machine — Windows, Mac or Linux — and intercepts requests to Microsoft APIs. By default, it introduces errors, so that there is a 50 percent chance of any request failing with a supported error code, a form of chaos engineering that helps when coding an application to behave nicely when 365, or possibly the local network, is misbehaving.

About KubeSphere

KubeSphere is an open source container platform built on top Kubernetes with applications at its core. It provides full-stack IT automated operation and streamlined DevOps workflows.

KubeSphere has been adopted by thousands of enterprises across the globe, such as Aqara, Sina, Benlai, China Taiping, Huaxia Bank, Sinopharm, WeBank, Geko Cloud, VNG Corporation and Radore. KubeSphere offers wizard interfaces and various enterprise-grade features for operation and maintenance, including Kubernetes resource management, DevOps (CI/CD), application lifecycle management, service mesh, multi-tenant management, monitoring, logging, alerting, notification, storage and network management, and GPU support. With KubeSphere, enterprises are able to quickly establish a strong and feature-rich container platform.

To stay updated, visit our official website or follow us on Twitter.

Cloud Native
Kubernetes

--

--

KubeSphere
KubeSphere

Written by KubeSphere

584 Followers
48 Following

KubeSphere (https://kubesphere.io) is an open source distributed operating system providing cloud native stack with Kubernetes as its kernel.

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams