Kubernetes Podcast from Google

In this episode we bring you with us to KubeCon EU 2023 in Amsterdam, Netherlands. We interviewed several attendees about their experience at the conference. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod Featuring: Adnan Hodzic Anisoara-Ionela Dominique Top Ixchel Ruiz Livia-Maria Ciobanu Magarita Manterola Mark Mandel Peter O’Neill Whitney Lee Zoe Steinkamp News of the week Kubernetes SIG Infra migrating some CI jobs to AWS Kubernetes 1.26 now Generally Available on GKE Software Supply Chain Security startup Stacklock, by Craig McLuckie and Luke Hinds raised 17.5M$ Kubernetes SIG Testing End to End Testing Best Practices update Knative version 1.10 release KubeDay Israel schedule Links from the interview Kubernetes, Resistance is Futile - Adnan Hodzic, ING Choose Your Own Adventure: The Treacherous Trek to Development - Whitney Lee, VMware & Viktor Farcic, Upbound Agones + Quil;kin: Kubernetes Game Server Orchestration and UDP Service Mesh - Mark Mandel, Google Cloud Open Policy Agent eBPF Build Your Own Path in the Cloud Native Ecosystem - Rich Burroughs, Loft Labs & Kaslin Fields, Google (Whitney mentioned learning about eBPF in this talk) Google Cloud Anthos PlayStation and Kubernetes: How to Solve a Problem Like Real-Time Story of Our Transition to a Custom Kubernetes Operator for an API Gateway - Vincent Behar, Ubisoft CNCF TAG App Delivery Cloud Native Buildpacks Kuberoke

Xander Grzywinski is a Senior Open Source Product Manager at Microsoft and the Kubernetes 1.27 release lead. We interviewed Xander to explore some highlights from the release, and discuss a bit about what it’s like to work with the release team. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod News of the week Traefik Labs Launches Traefik Hub Software Supply Chain Security Assessment: Prometheus Argo CD CNCF Spring 2023 Cloud Native Ambassadors Updates to the Auto-refreshing Official CVE Feed What’s New in Red Hat OpenShift Virtualization 4.12 Azure Kubernetes upgrades and Long Term Support KubeCon SHANGHAI, CHINA is back on Sept 26-28, 2023 CFP Closes on June 18, 2023 KubeCon NA takes place on Nov 6-9, 2023 in Chicago, Illinois CFP Closes on June 18, 2023 KubeCon EU 2024 takes place on Mar 19-22 in Paris, France Introducing Sessionize: a new CFP platform for CNCF events Manage Amazon EKS Clusters with New VMware Tanzu Mission Control Features Google Cloud turned profit for the first time according to the earning call of Q1 2023 Links from the interview Xander Grzywinsk: Twitter LinkedIn Pod Security Policies KEP 753: Sidecar containers Kubernetes 1.27 Release team Kubernetes 1.27: Chill Vibes Freeze k8s.gcr.io image registry Kubernetes Vertical Pod Autoscaler Kubernetes Removals and Major Changes In v1.27 Kyverno — verify Kubernetes control plane images Kubernetes 1.27: StatefulSet PVC Auto-Deletion (beta) Kubernetes 1.27: Query Node Logs Using The Kubelet API Kubernetes 1.27: Efficient SELinux volume relabeling (Beta) Kubernetes 1.27: StatefulSet Start Ordinal Simplifies Migration Kubernetes 1.27: Introducing An API For Volume Group Snapshots Kubernetes 1.27: Quality-of-Service for Memory Resources (alpha) Kubernetes 1.27: Vertical Pod Autoscaler supporting in-place updates Kubernetes 1.27: Server Side Field Validation and OpenAPI V3 move to GA Kubernetes 1.27: More fine-grained pod topology spread policies reached beta Kubernetes 1.27: Single Pod Access Mode for PersistentVolumes Graduates to Beta Kubernetes 1.27: HorizontalPodAutoscaler ContainerResource type metric moves to beta Links from the post-interview chat GKE Workload rightsizing

Paris Pittman is a Senior Program Manager at the Open Source Program office at Apple. A Prominent Kubernetes and CNCF member who served many roles with a focus on community and governance. Paris was on some key milestones for this show. First appearance was on Episode 1 and later on Episode 100. So we could not be happier to have Paris back in Episode 200. We discussed how Paris got started with community work and how the experience has been. Paris shared with us some words of wisdom on the power of working with others and the importance of moving on. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod News of the week KCD Amsterdam Retro AWS announced Data on EKS Kubecon EU 2023 “Security Village” Podman desktop released version 0.14 Keycloak joined CNCF as an incubating project Kubernetes v1.27 code name Chill Vibes was released The CNCF “Cloud Native Explorers” - Amsterdam Edition CNCF white paper on Platforms for Cloud Native Computing GKE Autopilot is now the default mode of operations for new clusters Links from the interview Paris Pittman: Linkedin Twitter Mastodon (@paris@hachyderm.io) OSCON 2016 Sarah Novotny Kaslin is a new chair of SIG contribX

In this episode we bring you with us to Southern California Linux Expo, or SCaLE20x in Pasadena, California. We interviewed several attendees about their experience at the conference. Featuring: Robin Phantomhive, attendee at SCaLE and community member Mofi Rahman, Developer Advocate at Google Fatima Sarah Khalid, Dev Evangelist at GitLab Bryan Behrenshausen, Open Source Program Manager at GitLab Laura Santamaria, Geek with an achievement streak at Dell Jeff Deifik, Cybersecurity at Aerospace Corp Jill Bryant Ryniker of LWDW and the Destination Linux Podcast Bill Schouten of Tux Digital and the Sudo Show Podcast Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod News of the week Chainguard contributes Rekor Search Project to Sigstore Docker and Ambassador Labs Announce Telepresence for Docker, Improving the Kubernetes Development Experience Docker, Inc. Celebrates 10th Anniversary With Alliances Oracle Cloud Infrastructure to Increase the Reliability, Efficiency, and Simplicity of Large-Scale Kubernetes Environments at Reduced Costs cdCon / GitOpsCon Schedule Crossplane Security Audit Crossplane completes fuzzing security audit Improving Security by Fuzzing the CNCF landscape Report Links from the interview Destination Linux Podcast LWDW LinuxChix LA Sudo Show Podcast Tux Digital Creating a cluster with kubeadm

David Flanagan is a developer, educator and technology enthusiast with a special interest for Kubernetes and Cloud Native technologies. David is the founder of Rawkode Academy, an online platform aiming at teaching kubernetes to developers. One of the popular shows on RawKode is Klustered. Where david invites people to fix broken kubernetes clusters, learn a thing or two and have a laugh Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod News of the week Istio Ambient Mesh merged into the main branch Kubernetes 1.27 changes and removals k8s.gcr.io to registry.k8s.io redirect Preview support for pod sandbox on Azure Kubernetes Services Katacontainers Docker apologies for handling Free Teams deprecation Schedule for CNCF-hosted and colocated events is up Kubernetes WithOut Kubelet CrowdStrike Discovers First-Ever Dero Cryptojacking Campaign Targeting Kubernetes Links from the interview David Flanagan Twitter Linkedin RawKode Academy Klustered How Spotify Accidentally Deleted All its Kube Clusters with No User Impact - David Xia You probably DON'T need a service mesh Klustered episode with Abdel and Marek Docker first release at PyCon 2013 KubeHuddle 2023 Toronto Kubernetes Failure Stories Kubelete runOnce flag Cilium Hubble Telnet Talkers Teamrock MUD's eBPF

Emily Fox is a security engineer @Apple Cloud Services, a CNCF Technical Oversight Committee member and co-chair for a bunch of CNCF events including recently the Cloud Native Security Conference in Seattle. We had a chance to talk to Emily about the first edition of the CNSC 2023, her involvement with the CNCF community. Her role as a security engineer and some career discussions. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod News of the week KubeEdge v1.13.0 released on January 18, 2023, achieves SLSA 3 compliance SLSA 3 compliance KubeVela brings software delivery control plane capabilities to CNCF Incubator GKE Updates: Balanced compute classes are now offered in GKE Autopilot GKE Autopilot now supports exposing randomly assigned host ports for pods GKE has started offering ephemeral storage with local SSDs Added support for Windows Server 2022 nodes AWS announced the availability of AKS anywhere on Snowball Edge Devices Sysdig released their 6th annual Cloud Native Security and Usage Report. Rebooting the Cloud Native Hamburg community group KubeCon EU Amsterdam Schedule Katacoda Kubernetes tutorials shutdown LFX Internships for WASMEdge Kubernetes Community Days (KCDs): Upcoming CFP deadlines: KCD Italy CFP closes February 20 2023 (in-person) KCD Czech + Slovak CFP closes March 1, 2023 (in-person) KCD Bangaluru CFP closes March 20, 2023 (in-person) KCD Zurich CFP closes March 31, 2023 (in-person) KCD Colombia CFP closes March 31, 2023 (in-person) Check out upcoming KCDs that might be in your region: Sponsorship opportunities are available Donation Prospectus available for review KCD Israel 2023, Mar 23, 2023 KCD LA, Mar 9, 2023 KCD Pakistan (Islamabad), February 20, 2023 KCD Netherlands (Amsterdam), February 23-24, 2023 KCD France (Paris), March 7, 2023 KCD Los Angeles, March 9-10, 2023 KCD Ukraine Virtual Fundraiser, March 16, 2023 Links from the interview Emily Fox: Twitter Linkedin Cloud Native Security Con Youtube Playlist How to Secure Your Supply Chain at Scale - Hemil Kadakia & Yonghe Zhao, Yahoo eBPF CIA Triad Waterfall development Cloudcareers.dev podcast Rory McCune on twitter Software Supply Chain Security Emily Fox on SBOM Emily Fox on SDLC Shift Left Security: Best Practices for Getting Started Episode 196 with Benjamin Elder CNSC 2023 seattle guests David Wolf Eric Knauer Liz Rice Mitch Connors Josh Knarr Nick Young Taylor Dolezal Frederick Kautz on SPIFFE/SPIRE Chris Aniszczyk's Blog The Falco Project Cilium Tetragon Pixie Aviatrix Keylime Google Anthos Beyond Cluster-Admin: Getting Started with Kubernetes Users and Permissions - Tiffany Jernigan Standardization & Security - A Perfect Match - Ravi Devineni & Vinny Carpenter, Northwestern Mutual CSI Container: Can You DFIR It? - Alberto Pellitteri & Stefano Chierici, Sysdig Links from the post-interview chat Cloud Native Security Con Eu 2023 CNCF TOC

Benjamin Elder is a Senior Software Engineer at Google, a Kubernetes SIG Testing Chair & Tech Lead, and a Kubernetes Steering Committee member. In this episode we got to chat with Benjamin about the new kubernetes registry migration from k8s.gcr.io to registry.k8s.io. We also had an opportunity to discuss the community, the various SIG's (Special Interest Groups) Benjamin is involved with the amount of work needed to drive the project forward. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod Chatter of the week Google Developer Experts program. ChatGPT. OpenAI Case Study. Kubernetes Jobs API. Job Tracking, to Support Massively Parallel Batch Workloads, Is GA in kubernetes 1.26. Stateful apps on Kubernetes. Kelsey Hightower's take on Databases on Kubernetes twitter space. Kubernetes Resources Model News of the week Linkerd published a 2022 recap The CNCF Cloud Native Maturity Model The CNCF Cloud Native Maturity Model website Using Amazon EKS with Google Workspace identities CNCF Ambassador 2.0 program Cloud Native Security Con NA 2023 (website - recordings) The CNCF important updates for KubeCon + CloudNativeCon 2023 and co-located events Kubernetes 1.26 news: https://kubernetes.io/blog/ Eviction policy for unhealthy pods guarded by PodDisruptionBudgets:https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/ Retroactive Default StorageClass: https://kubernetes.io/blog/2023/01/05/retroactive-default-storage-class/ Alpha support for cross-namespace storage data sources: https://kubernetes.io/blog/2023/01/02/cross-namespace-data-sources-alpha/ Advancements in Kubernetes Traffic Engineering: https://kubernetes.io/blog/2022/12/30/advancements-in-kubernetes-traffic-engineering/ Job Tracking, to Support Massively Parallel Batch Workloads, Is Generally Available: https://kubernetes.io/blog/2022/12/29/scalable-job-tracking-ga/ CPUManager goes GA: https://kubernetes.io/blog/2022/12/27/cpumanager-ga/ Pod Scheduling Readiness: https://kubernetes.io/blog/2022/12/26/pod-scheduling-readiness-alpha/ Support for Passing Pod fsGroup to CSI Drivers At Mount Time: https://kubernetes.io/blog/2022/12/23/kubernetes-12-06-fsgroup-on-mount/ GA Support for Kubelet Credential Providers: https://kubernetes.io/blog/2022/12/22/kubelet-credential-providers/ Introducing Validating Admission Policies: https://kubernetes.io/blog/2022/12/20/validating-admission-policies-alpha/ Device Manager graduates to GA: https://kubernetes.io/blog/2022/12/19/devicemanager-ga/ Non-Graceful Node Shutdown Moves to Beta: https://kubernetes.io/blog/2022/12/16/kubernetes-1-26-non-graceful-node-shutdown-beta/ Alpha API For Dynamic Resource Allocation: https://kubernetes.io/blog/2022/12/15/dynamic-resource-allocation/ Windows HostProcess Containers Are Generally Available: https://kubernetes.io/blog/2022/12/13/windows-host-process-containers-ga/ We're now signing our binary release artifacts!: https://kubernetes.io/blog/2022/12/12/kubernetes-release-artifact-signing/ Links from the interview Benjamin Elder LinkedIn Github Twitter Kubernetes Steering Committee Kubernetes SIG Testing Kubernetes IN Docker (KIND) Benjamin on the podcast episode 96 Paris Pittman LinkedIN Twitter Kubernetes registry move from k8s.gcr.io to registry.k8s.io Archeio is the tool used to redirect to GCR or S3 depending on the client. The design of how requests are handled. Doc detailing the background of this migration. Kubernetes SIG Contributor Experience Kubernetes Slack channel

Leonard Pahlke is not only the Release Lead for Kubernetes v1.26, he's also a co-chair of the CNCF TAG for Environmental Sustainability and a student working toward a Master's Degree in Computer Science at the Hamburg University of Applied Sciences. In this episode, Leonard talks with us about Open Source contribution, environmental sustainability, and Kubernetes v1.26. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod Chatter of the week The 1.23 Release team (where Kaslin was a comms shadow) Shoutout to Kunal Kushwaha, another Kubernetes contributor who started out as a student, and who advocates for students in the community via his YouTube channel & more. KubeCon EU 2023 (which will have a student track as part of the schedule) KubeCon Diversity and Inclusion Scholarships News of the week Kubernetes Removals, Deprecations, and Major Changes in 1.26 AWS ReInvent 2022 AWS YouTube Channel Control Plane Logs added for GKE Gateway Controller for Single Clusters reaches GA for GKE Prometheus Turns 10 Prometheus Training Prometheus Documentary by HoneyPot Move to registry.k8s.io Leak Signal Micro-waf CNCF Maintainer Track changes Links from the interview Leonard Pahlke’s Blog Leonard Pahlke blog about contribution: Start Contributing to Open Source Projects Leonard Pahlke CNCF WG Environmental Sustainablity Blog Post TAG Environmental Sustainability GitHub Specific 1.26 changes mentioned: Kubernetes 1.26: We're now signing our binary release artifacts! Kubernetes 1.26: Windows HostProcess Containers Are Generally Available CEL for Admission Control KEP In-tree Storage Plugin to CSI Migration - Azurefile In-tree Storage Plugin to CSI Migration - vSphereIn-tree storage plugin removals for GlusterFS and OpenStack, and more, are outlined in the “Kubernetes Removals, Deprecations, and Major Changes in 1.26” blog Kubernetes Enhancement Proposals (KEPs) Kubernetes v1.26 Electrifying Release Blog Links from the post-interview chat List of Kubernetes SIGs Kubernetes Release Team Shadow program

Louis Bailleul is a Chief Enterprise Architect at PGS. After years of running highly-ranked super computers to process PGS’ seismic data, Louis’s team at PGS has lead a transition to Google Cloud. Listen in to learn about HPC in Google Cloud with GKE, and to explore using Kubernetes to do processing on vessels at sea! Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Listen to the KubeCon NA 2022 recap episode News of the week Docker + WasmIstio control plane vulnerability CVE-2022-39278 KubeFlow joins CNCF as an Incubating Project CNCF Backstage course CNCF Istio intro course Links from the interview PGS A picture of a PGS vessel PGS post from 2021 about their supercomputing rankings and transition to Google CloudTop500 List Kubernetes Custom Resources (CRDs)Scaling Kubernetes to Thousands of CRDsGoogle Cloud Spot InstancesGoogle Cloud Preemptible VM Instances Google Cloud - Manage capacity and quotaKubeCon NA 2019: How the Department of Defense Moved to Kubernetes and Istio - Nicolas Chaillan Bare Metal K8s Clustering at Chick-fil-A Scale by Brian Chambers, Caleb Hurd, and Alex Crane

In this episode we bring you with us to KubeCon NA 2022 in Detroit, Michigan. We interviewed 15 attendees from various backgrounds and learned some cool insights. Featuring: Mo KhanKatrina Verey Aishwarya HarpaleJeffery SicaKirsten SchumyJohn-Paul RobinsonMadhav JivrajaniLeigh CapiliNim JayawardenaCharlie YuAhrar MonsurMickey BoxellEddie ZaneskiAndy PiggottLogan SmithBrian Dorsey Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod News of the week CrowdStrike cryptojacking finding Skaffold v2 Generally Available BlogVideo BlogProject pageCNCF Sandbox project application information Istio becomes a CNCF Incubating project Cert-manager becomes a CNCF Incubating projectCisco OpenClarity Kube-router bug Google Cloud Next Wrap-Up Microsoft Ignite highlights blog Cloud Native SecurityCon Linux Foundation partnership with Razom for Ukraine Links from the interview Kubernetes SIG Auth Kubernetes SIG API MachineryFluxCDOnline Boutique Sample App Kubernetes SIG-CLICloud Native 101: Motor City Edition by Bob Killen and Jeffrey SicaConsumers to Contributors by Brendan O’LearyKubernet-Bees: How Bees Solve the Problems of Distributed SystemsSchedMD SlurmKube-bindContribute to etcd! Cloud Native WASM Day Cloud Native SecurityConBackstage (Incubating CNCF Project)eBPFCilium (Incubating CNCF Project)Acorn LabsVulcan Mind-Meld (Star Trek) Kids’ Day at KubeCon NA 2022

After four and a half years hosting this podcast (and almost 9 years at Google) Craig Box is moving on from the latter, which unfortunately means leaving the former. But the show must go on. In this episode Craig introduces new hosts Abdel Sghiouar and Kaslin Fields. We take a small look forward, and then a big look back. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Links from the show Adam’s last episodeAbdelfettah SghiouarDevoxx MACloud Careers PodcastYou probably DON’T need a Service MeshKaslin FieldsContainers as cookiesBiscuits and gravy Contributor commsFirst-gen stickersSecond-gen stickersEpisode 60, with Mark ShuttleworthEpisode 15, with Dan Ciruli and Jasmine Jaksic Dan on sticker dutyEpisode 30, with Joe Zou A rare team photo KaossilatorEpisode 191, with DJ FreshEpisode 127, with David PaitEpisode 83, with Guinevere SaengerEpisode 120, with Melanie CebulaEpisode 121, with Ed HuangEpisodes 1100Episodes 62180 The Adam face Corey Quinn One of many booth meetupsFollow Craig Box on TwitterFollow Adam Glick on LinkedIn

Dan Stein is an engineering manager at General Bioinformatics. Dan Stein is also DJ Fresh, a multi-million selling artist with two UK number one records. Learn about the surprising overlap between these two careers. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod@craigbox Chatter of the week Trevor Noah stepping down as host of Daily ShowFollow @craigbox to learn what’s next News of the week Google Cloud adds GPU support to AutopilotPricingCVE-2021-36782 in Rancher State of DevOps Report for 2022 Congratulations to the 27 Summer LFX Program CNCF interns Reviewing the 2019 Kubernetes security audit Links from the interview DJ FreshAtari 800Atari STPongAtari BASICCommodore AmigaOctaMEDFatboy Slim and the Atari STDogs on Acid Taylor Hawkins Tribute ConcertsAbolishing the high tax rate in the UK, or notBreakbeat KaosHold Your ColourKryptoniteGold DustLouderHot Right NowKymaMax/MSPWe Got CodersGeneral BioinformaticsNGS gene sequencing EnsemblHasuraGraphQL PlaygroundNCBIMax Martin How Music WorksTreehouseUdemy3Blue1BrownCodeacademyHigherDJ FreshDan Stein

Betty Junod, VP of Product Marketing at VMware Tanzu, kindly took up Craig’s challenge to explain the various parts of the Tanzu ecosystem, and how the traditional IT buyer and the modern cloud native really aren’t that different. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod@craigbox Chatter of the week NASA DART missionDeep ImpactArmageddonApparent retrograde motionPlanets beyond Neptune News of the week Istio sails into the CNCF SPIFFE and SPIRE graduateEpisode 45, with Andrew JessupBrigade archivedSysdig 2022 Cloud Native threat reportThe nice TeamTNTEpisode 188, with Kateryna IvashchenkoEpisode 169, with Anna Belak Chainguard introduces Wolfiworkerd, from Cloudflare Introducing Palaemon Custom org policy for GKE in preview Leveraging Kubernetes for an elastic platform at Blablacar Links from the interview VMwareHistoryDockerSolo.io VMware Tanzu introduction blog VMware acquires Heptio VMware acquires PivotalTanzu Mission ControlTanzu for Kubernetes OperationsTanzu Application PlatformTanzu Kubernetes Grid Bring your own host to TKG Project Pacific introduction TKG 2.0 VMware Aria Operations for ApplicationsTanzu Application ServiceCloud FoundryVeleroAntreaCarvelCartographer Michigan ciderDetroit-style pizzaBetty Junod

When you think of a service mesh, you probably think of “sidecar containers running with each pod”. The Istio team has come up with a new approach, introduced recently as an experimental preview. Google Cloud software engineers Justin Pettit and Ethan Jackson join Craig to explore ambient mesh. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Listening immediatelylistening on a 1 year delay Death and state funeral of Queen Elizabeth IIThe QueueWhat the queue says about our relationship with royalty News of the week Cloud Custodian becomes an incubating project Anthos VM support GKE control plane metrics CVE-2022-3172: Aggregated API server can cause clients to be redirected CVE-2021-25749: runAsNonRoot logic bypass for Windows containersAkuity PlatformEpisode 172, with Jesse SuenWeave GitOps 2022.09Coroot Community EditionConstellation, by Edgeless SystemsRegister for Google Cloud Next Dell and Red Hat expand strategic collaboration Links from the interview NiciraOpen vSwitchIntroucing Ambient MeshService meshFirst mention of Ambient in 2018No first class support for sidecars in Kubernetes Istio working group meeting, August 2021 Remote proxy proposalHBONE mTLS HTTP ConnectGIFMASQUEQUICGet started with Ambient MeshAmbient Mesh Security Deep DiveJustin PettitEthan Jackson

Kateryna Ivashchenko is a Senior Demand Generation Manager at Teleport, an organizer of community events, and a supporter of the developer community in her home country of Ukraine. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod News of the week Introducing Ambient Mesh in IstioIstio 1.15Linkerd 2.12Linkerd and the Gateway APISymbiosisCuber Reddit discussion VMware Tanzu announcments from VMware Explore Isovalent raises $40m Series B PodSecurityPolicy: The Historical Context Pod Security Admission Controller in StableCSI Inline Volumes have graduated to GAcgroup v2 graduates to GA Kubernetes was never designed for batch jobs 7 years of GKE General Availability Links from the interview PortworxTeleport24 February 2022: Russia invades UkraineBeyondCorpTeleport open sourcehunter2Okta breach Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin’s Most Dangerous HackersWar in UkraineKateryna’s sister’s T-shirtIndependence DayChris LentricchiaOperation Dvoretskyi CNCF crowdfundingDevOpsDays KyivInternational Snack ExchangeKateryna Ivashchenko on Twitter

It’s release day! We discuss today’s Kubernetes 1.25 with release team lead Cici Huang, Software Engineer at Google Cloud. What’s in, what’s out, and what is it like to lead a release you are also promoting a feature in? Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Nelson underwaterEngland underwaterA picture of a sheepFollow Craig on Twitter for more like that News of the week Kubernetes 1.25 releaseIntroducing Acorn Acorn Labs: Rancher Co-Founders’ New Kubernetes StartupEpisode 57, with Darren Shepherd New observability metrics GKE Autopilot now default 256 pods per node KubeCon schedule publishedCloud Native RejektsScaling Kubernetes to thousands of CRDs Links from the interview IBM WatsonKubernetes Community Awards SIG API MachineryChair & Cici’s hiring manager: Fede Bongiovanni Kubernetes 1.25 release teamRelease blogPodSecurityPolicy is removedPod Security Admission is stablecgroups v2KMS v2alpha1CRD valdation experession language Registry changeKubernetes 1.24 delayTheme and logoEpisode 178, with James LaverackLeonard PahlkeCici Huang

Three years after they were first proposed, the new Kubernetes Gateway APIs - the evolution of the Ingress API - are in Beta. Rob Scott is a software engineer at Google and a lead on the SIG Network Gateway API project. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Hot hot hotStevenson screenHeathrow AirportKew GardensRAF Coningsby News of the week Argo blogADA Logics blogEpisode 172, with Jesse Suen Kubernetes Cluster API integrates continuous fuzzing The reportOSS Fuzz Cilium 1.12 GKE Cluster Autoscaler location policy The quest for neutrinos Ray traced Quake II Links from the interview Gateway APISpire LabsFairwindsrbac-managerPolaris Episode 104, with Bowei DuIngressGateway API conceptsRoles and resource model GatewayClass GKE implementation of GatewayClass Conformance testsPolicy attachmentGateway RoutesGateway API goes to BetaGRPCRouteGateway Enhancement Proposal (GEP)Istio APIs that influenced the Gateway APIGAMMA InitiativeIstio support for Gateway APISMI community joiningGateway API on GitHubSanta Cruz MoutainsRob Scott on TwitterLinkedIn

Ian Miell is a partner at consultancy Container Solutions, and an author of books on Bash, Git, Terraform and Docker. He explains to Craig how writing - whether runbooks, blog posts, training courses, or “real” books, can help you learn and make your team more effective. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Hot hot hotSmall pools larger pools News of the week Gateway API goes to Beta Episode 104, with Bowei DuIstio support for Gateway APISMI community gets behind Gateway API Kyverno KeptnEpisode 119, with Alois Reitbauer Tau T2A Arm VMs now on Google Compute Engine GKE support for Tau T2A Arm nodes Kubeshop acquires BotKube Exploiting Authentication in AWS IAM Authenticator for Kubernetes New Vulnerabilities in Kubernetes NGINX Ingress Controller CNCF sponsors audit of KubeEdgeKubeEdge security threat model Audit report Red Hat announces new CEOGoogle Cloud announces new Distinguished Engineer Episode 185, with Clayton Coleman Links from the interview Zwischenzugs Business Value, Soccer Canteens, Engineer Retention, and the Bricklayer FallacyZwischenzugzugzwangLearn Bash The Hard WayLearn Git The Hard WayLearn Terraform The Hard WayAll three in a bundleDocker in PracticeTclWhy are enterprises so slow?ErlangEpisode 164, with Daniel Walsh ‘AWS vs K8s’ is the new ‘Windows vs Linux’The Runbooks ProjectITILEpisode 183, with Steve Wade Why it’s great to be a consultantContainer SolutionsTeam Topologies If You Want To Transform IT, Start With FinanceConway’s LawIan Miell

Why does a car manufacturer own an IT company? How did that IT company end up running 900 Kubernetes clusters, starting at version 0.9? Craig asks these questions and more of Sabine Wolz, Product Manager at Mercedes-Benz Tech Innovation. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week Live UK political coverage on the day of recordingat the time of releaseShibbolethLord of the Rings TV show moved to UK News of the week GKE Cost Allocation CubeFS accepted as CNCF incubating project Bare metal deployments for EKS AnywhereEpisode 142, with Gianluca ArbezzanoCubernetes Episode 20, with Justin Garrison OpenShift Service Mesh 2.2 Tanzu Mission Control adds FluxCD Pixie plugins What GKE users need to know about Kubernetes’ new service account tokens Kubernetes is a red flag signalling premature optimisationHacker News discussioneBPF Summit 2022 Links from the interview Mercedes-Benz Tech InnovationMercedes-BenzDaimler TruckHow should electric vehicles sound?Ulmits churchSabine’s KubeCon keynoteHow to Migrate 700 Kubernetes Clusters to Cluster API with Zero Downtime: Tobias Giese & Sean SchneeweissGame theoryFOSS ManifestoInner sourceCNCF End User CommunityThe promise of flying carsSabine Wolz on LinkedIn

Gone are the days of working at the same company for 50 years. Consultants and contractors bring specialised experience to many companies in short bursts. Steve Wade is an independent Kubernetes consultant and trainer, and he tells us how that became the life for him. Do you have something cool to share? Some questions? Let us know: kubernetespodcast.comkubernetespodcast@google.com@kubernetespod Chatter of the week QueenBourton-on-the-WaterModel villageModel village inception News of the week eBPF and IP masquerading in GKE Autopilot Dual stack networking Time-shared GPUs Confidential GKE nodesParalus RafayFurikoShopeeClusterpediaOpenCostAeraki MeshCurveOpenFeatureKubewardenDevStream Traefik HubCyble’s exposed Kubernetes clustersBitnami index FAQ Links from the interview Premier LeagueTescoConsultantsIR35KSOCIndian foodSteve Wade (1987) on Twitter