Kubernetes is exciting, there is a lot going on in the community and a lot of components to why it rocks: CRDs, sweet networking, isolation, and more more more. Join us this week to look at why folks might think it's complicated and how we might embrace that complexity and get on with our kubelife.
A hopeful (well somewhat... maybe realistic or mature?) take on what really makes Kubernetes complicated. The idea that people are growing up on Kubernetes is a pretty neat one that is probably what is going to make Cloud Native Applications and Infrastructure work.
The last post in google's recent container security series. A pretty interesting read and way of thinking about the different levels of boundaries in a Kubernetes cluster in terms of "security" and "trust". It would have been cool if they provided more information about how RBAC policies fit into their way of thinking about isolation.
A neat discussion continues on reddit including whether you should ever apply or delete things with kubectl manually or whether that should be managed by CI.
Probably not a chaos monkey, but end-to-end testing for Kubernetes operations, now that is cool!
If you are managing or implementing CRDs and controllers for them, you will want to check this out. The article ends on an interesting point, that Kubernetes applications are typically going to be composed of lots of CRDs and knowing how they work and interact with each other and with your cloud native applications is still a big challenge.
"Kubernetes 1890s edition"