diff --git a/docs/demos.md b/docs/demos.md index 38e49969..14d475bb 100644 --- a/docs/demos.md +++ b/docs/demos.md @@ -684,6 +684,7 @@ Grab them from here: [awesome-kubernetes/scripts](https://github.com/nubenetes/a - [mbenko/myYAML 🌟](https://github.com/mbenko/myYAML) This project contains the initial code for a course on [YAML Pipelines](https://www.linkedin.com/learning/azure-devops-continuous-delivery-with-yaml-pipelines). - [==thomasthornton.cloud: A DevOps journey using Azure DevOps==](https://thomasthornton.cloud/2021/12/26/a-devops-journey-using-azure-devops/) - [thomast1906/DevOps-Journey-Using-Azure-DevOps 🌟](https://github.com/thomast1906/DevOps-Journey-Using-Azure-DevOps/tree/main/labs) - [lambdatest.com: How To Build a CI/CD Pipeline In Azure DevOps ?](https://www.lambdatest.com/blog/build-ci-cd-pipeline-in-azure-devops/) +- [medium.com/tea-networks: Kubernetes & CI/CD Pipeline](https://medium.com/tea-networks/kubernetes-ci-cd-pipeline-c028aea17535) ### Azure Demos - [blogs.sap.com: Cloud Integration with Commerce Azure Blob Storage using REST API – Part 1](https://blogs.sap.com/2021/07/04/cloud-integration-with-commerce-azure-blob-storage-using-rest-api/) diff --git a/docs/images/anais_urlichs.jpg b/docs/images/anais_urlichs.jpg new file mode 100644 index 00000000..926c3b85 Binary files /dev/null and b/docs/images/anais_urlichs.jpg differ diff --git a/docs/index.md b/docs/index.md index a526925c..06206cd7 100644 --- a/docs/index.md +++ b/docs/index.md @@ -253,7 +253,7 @@ A curated list of awesome references collected since 2018. Microservices archite [![cloud academy](images/cloud_academy_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/Cloudacademy) [![acloudguru](images/acloudguru_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/AcloudGuru) [![devops_tv](images/devops_tv_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/Devopsdotcom) [![xebialabs](images/xebialabs_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/XebiaLabs) [![devops library](images/devops_library_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/Devopslibrary) [![codecademy](images/codecademy.jpg){: style="width:7%"}](https://www.youtube.com/c/codecademy) [![coursera](images/coursera_logo.jpg){: style="width:7%"}](https://www.youtube.com/user/coursera) [![academind](images/academind_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/Academind) [![guru99](images/guru99_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/guru99comm) [![intellipaat](images/intellipaat_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/Intellipaat) [![cloud quick POCs](images/cloudquickpocs.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCv9MUffHWyo2GgLIDLVu0KQ)
[![thetips4you](images/thethips4you.jpg){: style="width:7%"}](https://www.youtube.com/c/Thetips4you) [![cloud learnhub](images/cloud_learn_hub.jpg){: style="width:7%"}](https://www.youtube.com/channel/UC57acx8sCmE7uFHfVMvIlNg) [![John Savill](images/John_Savill.jpg){: style="width:7%"}](https://www.youtube.com/c/NTFAQGuy) [![microservice factory](images/microservice_factory.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCorFV-WGnajyfNu4zPI0AAA) [![kubedb appscode](images/kubedb_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/AppsCodeInc) [![devops toolkit](images/devops_toolkit.jpg){: style="width:7%"}](https://www.youtube.com/c/DevOpsToolkit) [![ansible pilot](images/ansiblepilot.jpg){: style="width:7%"}](https://www.youtube.com/c/AnsiblePilot) [![codelytv](images/codelytv_logo.jpg){: style="width:7%"}](https://www.youtube.com/CodelyTV) [![pelado nerd](images/pelado_nerd.jpg){: style="width:7%"}](https://www.youtube.com/c/PeladoNerd) [![hola mundo](images/hola_mundo.jpg){: style="width:7%"}](https://www.youtube.com/c/HolaMundoDev) [![javier garzas](images/jgarzas.jpg){: style="width:7%"}](https://www.youtube.com/c/JavierGarz%C3%A1s/)
[![london IAC](images/londonIAC.jpg){: style="width:7%"}](https://www.youtube.com/c/LondonIAC) [![techworld nana](images/techworld_nana.jpg){: style="width:7%"}](https://www.youtube.com/c/TechWorldwithNana) [![honeypot](images/honeypot.jpg){: style="width:7%"}](https://www.youtube.com/c/Honeypotio) [![Ali Spittel](images/aspittel.jpg){: style="width:7%"}](https://www.youtube.com/c/AliSpittelDev) [![thomas maurer](images/thomas_maurer.jpg){: style="width:7%"}](https://www.youtube.com/c/ThomasMaurerCloud) [![freecodecamp](images/freecodecamp.jpg){: style="width:7%"}](https://www.youtube.com/c/Freecodecamp) [![thenewstack](images/thenewstack.jpg){: style="width:7%"}](https://www.youtube.com/c/TheNewStack) [![argocd project](images/argoproj.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCOvYmppcbOPm1viN6ust3lA) [![fluxcd](images/fluxcd.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCoZxt-YMhGHb20ZkvcCc5KA) [![container days](images/containerdays.jpg){: style="width:7%"}](https://www.youtube.com/c/ContainerDays) [![the cloud girl](images/thecloudgirl.jpg){: style="width:7%"}](https://www.youtube.com/c/priyankavergadia)
-[![ContinuousDeliveryFoundation](images/ContinuousDeliveryFoundation.jpg){: style="width:7%"}](https://www.youtube.com/c/ContinuousDeliveryFoundation) [![tina huang](images/tinahuang.jpg){: style="width:7%"}](https://www.youtube.com/c/TinaHuang1) [![azure devops](images/azure_devops_youtube.jpg){: style="width:7%"}](https://www.youtube.com/c/AzureDevOps) [![azure cloud native](images/azure_cloud_native.jpg){: style="width:7%"}](https://www.youtube.com/channel/UC2Pk9GcHhlVV0R9CQIU6gLw) [![alibaba cloud](images/alibaba_cloud.jpg){: style="width:7%"}](https://www.youtube.com/c/AlibabaCloud) [![linode cloud](images/linode_cloud.jpg){: style="width:7%"}](https://www.youtube.com/c/linode) [![gaia-x](images/gaia_x.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCB5WMc2FfrxKzfd7XIODoMw) [![gps](images/gps.jpg){: style="width:7%"}](https://www.youtube.com/c/MadeByGPS) [![keptn](images/keptn_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/keptn) [![white square](images/empty_logo.jpg){: style="width:7%"}](https://www.youtube.com) [![white square](images/empty_logo.jpg){: style="width:7%"}](https://www.youtube.com) +[![ContinuousDeliveryFoundation](images/ContinuousDeliveryFoundation.jpg){: style="width:7%"}](https://www.youtube.com/c/ContinuousDeliveryFoundation) [![tina huang](images/tinahuang.jpg){: style="width:7%"}](https://www.youtube.com/c/TinaHuang1) [![azure devops](images/azure_devops_youtube.jpg){: style="width:7%"}](https://www.youtube.com/c/AzureDevOps) [![azure cloud native](images/azure_cloud_native.jpg){: style="width:7%"}](https://www.youtube.com/channel/UC2Pk9GcHhlVV0R9CQIU6gLw) [![alibaba cloud](images/alibaba_cloud.jpg){: style="width:7%"}](https://www.youtube.com/c/AlibabaCloud) [![linode cloud](images/linode_cloud.jpg){: style="width:7%"}](https://www.youtube.com/c/linode) [![gaia-x](images/gaia_x.jpg){: style="width:7%"}](https://www.youtube.com/channel/UCB5WMc2FfrxKzfd7XIODoMw) [![gps](images/gps.jpg){: style="width:7%"}](https://www.youtube.com/c/MadeByGPS) [![keptn](images/keptn_logo.jpg){: style="width:7%"}](https://www.youtube.com/c/keptn) [![anais urlichs](images/anais_urlichs.jpg){: style="width:7%"}](https://www.youtube.com/c/AnaisUrlichs) [![white square](images/empty_logo.jpg){: style="width:7%"}](https://www.youtube.com) ??? note "Kubernetes: The Documentary - Click to expand!" diff --git a/docs/java-and-java-performance-optimization.md b/docs/java-and-java-performance-optimization.md index 79dd223d..dd1634ee 100644 --- a/docs/java-and-java-performance-optimization.md +++ b/docs/java-and-java-performance-optimization.md @@ -163,5 +163,7 @@ En cualquier caso hay una tendencia al Heap-Offloading. El consumo de memoria en

Once, I spent 6 months of my adult life as a full time JVM tuner. I was hired to work on data processing pipelines but the job became being a JVM tuning machine.

— Jaana Dogan γƒ€γƒŠ ドガン (@rakyll) November 19, 2021

Who knew that a @Java developer as the best job in the UK according to ⁦@Glassdoor⁩. Feel lucky to be in the industry! pic.twitter.com/IIQAmJA95l

— George Adams (@gdams_) February 3, 2022
+ +

If you don't set a Garbage Collector for your #Java application, don't think the JVM will pick a good one for you either, no matter how many CPUs you give.

2 CPUs? 6 CPUs? It doesn't matter. If your container has less than 1792 MB and you don't set a GC, your app will use Serial pic.twitter.com/06mr9TKkKn

— Bruno Borges πŸ‡§πŸ‡·πŸ‡ΊπŸ‡¦πŸ‡¨πŸ‡¦ (@brunoborges) March 2, 2022
\ No newline at end of file diff --git a/docs/kubernetes-networking.md b/docs/kubernetes-networking.md index d4705fad..0789b767 100644 --- a/docs/kubernetes-networking.md +++ b/docs/kubernetes-networking.md @@ -258,5 +258,7 @@

Let's see how many folks here haven't seen this thread on Kubernetes Networking.

Once again, the thread doesn't try to explain the subject matter in great detail but offers a particular learning order instead.

As usual, based on my personal experience πŸ”½ pic.twitter.com/pxCWJUxj5j

— Ivan Velichko (@iximiuz) November 28, 2021

🧡 How does Pod to Pod communication work in Kubernetes?

How does the traffic reach the right Pod?

Let's see πŸ‘‡ pic.twitter.com/gF2eVWYL4Q

— Daniele Polencic (@danielepolencic) January 31, 2022
+ +

When your apps receive a ton of traffic, how do you scale your Ingress Controller in Kubernetes?

Here is what I do πŸ‘‡ pic.twitter.com/T6aYurE7Lj

— Daniele Polencic (@danielepolencic) March 2, 2022
\ No newline at end of file diff --git a/docs/kubernetes-security.md b/docs/kubernetes-security.md index 9f96bbf4..f541dd03 100644 --- a/docs/kubernetes-security.md +++ b/docs/kubernetes-security.md @@ -16,6 +16,7 @@ - [Security Profiles Operator](#security-profiles-operator) - [EKS Security](#eks-security) - [CVE](#cve) +- [Videos](#videos) - [Tweets](#tweets) ## Introduction @@ -108,7 +109,7 @@ * [==peoplactive.com: Kubernetes and Container Security Checklist to Build Secure Apps==](https://peoplactive.com/kubernetes-security-best-practices/) * [venturebeat.com: Kubernetes security will have a breakout year in 2022](https://venturebeat.com/2021/12/27/kubernetes-security-will-have-a-breakout-year-in-2022/) * [==medium: Comparing Kubernetes Security Frameworks and Guidance== 🌟](https://medium.com/@jonathan_37674/comparing-kubernetes-security-frameworks-and-guidance-f1c2821ea733) Comparing popular Kubernetes security and compliance frameworks, how they differ, when to use, common goals, and suggested tools. -* [aninditabasak.medium.com: A Lap around Kubernetes Security & Vulnerability scanning Tools β€” checkov, kube-hunter, kube-bench & Starboard](https://aninditabasak.medium.com/a-lap-around-kubernetes-security-vulnerability-scanning-tools-checkov-kube-hunter-kube-bench-4ffda92c4cf1) +* [==aninditabasak.medium.com: A Lap around Kubernetes Security & Vulnerability scanning Tools β€” checkov, kube-hunter, kube-bench & Starboard==](https://aninditabasak.medium.com/a-lap-around-kubernetes-security-vulnerability-scanning-tools-checkov-kube-hunter-kube-bench-4ffda92c4cf1) * [==blog.gitguardian.com: Hardening Your Kubernetes Cluster - Threat Model (Pt. 1)== 🌟](https://blog.gitguardian.com/hardening-your-k8-pt-1/) The NSA and CISA recently released a guide on Kubernetes hardening. We'll cover this guide in a three part series. First, let's explore the Threat Model and how it maps to K8s components. * [==blog.gitguardian.com: Hardening Your Kubernetes Cluster - Guidelines (Pt. 2)== 🌟](https://blog.gitguardian.com/hardening-your-k8s-pt-2/) In this second episode, we will go through the NSA/CISA security recommendations and explain every piece of the guidelines. * [blog.devgenius.io: How is security managed in Kubernetes clusters?](https://blog.devgenius.io/how-is-security-managed-in-kubernetes-clusters-addefffd2b0) Best practices for managing security in Kubernetes at various layers @@ -281,6 +282,13 @@ Kubernetes supports several authentication methods out-of-the-box, such as X.509 - [hackerone.com: Authenticated kubernetes principal with restricted permissions can retrieve ingress-nginx serviceaccount token and secrets across all namespaces](https://hackerone.com/reports/1249583) - [blog.lightspin.io: NGINX Custom Snippets CVE-2021-25742](https://blog.lightspin.io/nginx-custom-snippets-cve-2021-25742) +## Videos +??? note "Click to expand!" + +
+ +
+ ## Tweets
Click to expand! diff --git a/docs/kubernetes-storage.md b/docs/kubernetes-storage.md index 34fc9109..3422ba1c 100644 --- a/docs/kubernetes-storage.md +++ b/docs/kubernetes-storage.md @@ -68,6 +68,7 @@ - [techgenix.com: Data Storage Management for Kubernetes - 5 movers and shakers](https://techgenix.com/data-storage-management-for-kubernetes/) - [==thenewstack.io: The Growth of State in Kubernetes==](https://thenewstack.io/the-growth-of-state-in-kubernetes/) - [itnext.io: Highly Available NFS cluster in Kubernetes, a cloud vendor independent storage solution](https://itnext.io/highly-available-nfs-cluster-in-kubernetes-a-cloud-vendor-independent-storage-solution-f9a314cfdfcc) +- [armosec.io: Data Storage in Kubernetes](https://www.armosec.io/blog/kubernetes-data-storage/) Kubernetes in cooperation with cloud vendor infrastructure provides flexible mechanisms for data storage and management. It is up to the users to decide which mechanism best fits their application needs. However, the security side of the data storage falls completely under the user’s responsibility. Most of the default settings are wide open and require significant security expertise to protect your applications from data leakage. ## DoK Community - [==DoK Community== 🌟](https://dok.community) diff --git a/docs/kubernetes-tools.md b/docs/kubernetes-tools.md index 0aab349a..4e8e265a 100644 --- a/docs/kubernetes-tools.md +++ b/docs/kubernetes-tools.md @@ -63,6 +63,7 @@ - [Auto-portforward (apf)](#auto-portforward-apf) - [gardener/Terraformer](#gardenerterraformer) - [Werf](#werf) +- [Starboard kubernetes-native security toolkit](#starboard-kubernetes-native-security-toolkit) - [Tweets](#tweets) ## Introduction @@ -704,6 +705,9 @@ ## Werf - [==werf/werf==](https://github.com/werf/werf) The CLI tool gluing Git, Docker, Helm, and Kubernetes with any CI system to implement CI/CD and Giterminism. Werf is an Open Source CLI tool written in Go, designed to simplify and speed up the delivery of applications. To use it, you need to describe the configuration of your application (in other words, how to build and deploy it to Kubernetes) and store it in a Git repo β€” the latter acts as a single source of truth. In short, that's what we call **GitOps** today. +## Starboard kubernetes-native security toolkit +- [==aquasecurity/starboard==](https://github.com/aquasecurity/starboard) Kubernetes-native security toolkit. Starboard is a completely open source tool that integrates with other security tools to scan your workloads and make security reports accessible through the Kubernetes API - K8s all the way πŸš€ + ## Tweets
Click to expand! diff --git a/docs/prometheus.md b/docs/prometheus.md index e5808397..b6e84369 100644 --- a/docs/prometheus.md +++ b/docs/prometheus.md @@ -36,6 +36,8 @@ - [Validation of Artemis Broker Monitoring with JMeter](#validation-of-artemis-broker-monitoring-with-jmeter) - [JMeter Example Test Plans](#jmeter-example-test-plans) - [Prometheus and Azure](#prometheus-and-azure) +- [Managed Prometheus in AWS](#managed-prometheus-in-aws) +- [Managed Prometheus in GCP](#managed-prometheus-in-gcp) - [Videos](#videos) - [Tweets](#tweets) @@ -702,6 +704,12 @@ JMeter|Artemis Grafana|Artemis Dashboard ## Prometheus and Azure - [Promitor 🌟](https://promitor.io) An Azure Monitor scraper for Prometheus +## Managed Prometheus in AWS +- [Managed Prometheus in AWS](prometheus.md#aws-managed-services-for-prometheus-and-grafana) + +## Managed Prometheus in GCP +- [==cloud.google.com: Google Cloud Managed Service for Prometheus==](https://cloud.google.com/stackdriver/docs/managed-prometheus/) A top option in the market. It's a drop-in replacement for what you have now, and offers leading scale, price, and retention, all with a global backplane. + ## Videos
Click to expand! diff --git a/docs/servicemesh.md b/docs/servicemesh.md index adf003ab..c38512a1 100644 --- a/docs/servicemesh.md +++ b/docs/servicemesh.md @@ -54,7 +54,7 @@ * [thenewstack.io: Secure Your Service Mesh: A 13-Item Checklist](https://thenewstack.io/secure-your-service-mesh-a-13-item-checklist/) * [infoq.com: Adoption of Cloud Native Architecture, Part 3: Service Orchestration and Service Mesh](https://www.infoq.com/articles/cloud-native-architecture-adoption-part3/) * [infoq.com: Service Mesh Ultimate Guide - Second Edition: Next Generation Microservices Development](https://www.infoq.com/articles/service-mesh-ultimate-guide-2e/) -* [itnext.io: Stupid Simple Service Mesh β€” What, When, Why 🌟](https://itnext.io/stupid-simple-service-mesh-what-when-why-e9be9e5f4d41) +* [==itnext.io: Stupid Simple Service Mesh β€” What, When, Why== 🌟](https://itnext.io/stupid-simple-service-mesh-what-when-why-e9be9e5f4d41) * [thenewstack.io: The Hidden Costs of Service Meshes](https://thenewstack.io/the-hidden-costs-of-service-meshes/) * [learnsteps.com: What is a service mesh? Is it born with Kubernetes?](https://www.learnsteps.com/what-is-a-service-mesh-is-it-born-with-kubernetes/) * [==medium: Microservices and the World with a Service Mesh== | Adarsh Prabhu](https://medium.com/@adarsh.prabhu/microservices-and-the-world-with-a-service-mesh-ec9a709dd4b5) We will look at how the unruly world of distributed microservices can be tamed by using a Service Mesh. Service Meshes form the backbone of some of the very complex applications out there. They solve critical issues of the microservices architecture and provide better Traffic Management, Security and Observability. In most cases these features are enabled without requiring any code changes. diff --git a/docs/sre.md b/docs/sre.md index 27aba778..c89b2d44 100644 --- a/docs/sre.md +++ b/docs/sre.md @@ -69,6 +69,7 @@ - [devops.com: Day in the Life of a Site Reliability Engineer (SRE)](https://devops.com/day-in-the-life-of-a-site-reliability-engineer-sre/) - [devops.com: Top Nine Skills for SREs to Master 🌟](https://devops.com/top-nine-skills-for-sres-to-master/) - [devops.com: How SREs Benefit From Feature Flags](https://devops.com/how-sres-benefit-from-feature-flags/) +- [toolbox.com: Site Reliability Engineering: What Is It and How Can It Help Scale Operations? 🌟](https://www.toolbox.com/tech/devops/articles/automating-sre-to-scale-operations/) Site Reliability Engineering (SRE) is an essential task that bridges the gap between developers and operations. Here’s how organizations can refine it further by leveraging automation. ## SRE Tools - [thenewstack.io: The Site Reliability Engineering Tool Stack](https://thenewstack.io/the-site-reliability-engineering-tool-stack/)