linux, devops, sre, cloud, virtualization, containers, performance tunning, golang…
kube-rbac-proxy - how to protect access to your app in the Kubernetes environment
Whenever you want to expose some endpoints even to the inside world like in Kubernetes, you think twice about the security impact especially when you’re not using service mesh or simple network policy for protection.
Mirrord for bringing mirrored traffic to your local development environment
I’m observing the growth of the Kubernetes ecosystem around developer experience aka DX.
Kubernetes Pod Security Admission
Kubernetes 1.25 is coming closer to release, one of the biggest deprecation is Pod Security Policy I would say besides of recent deprecation of Docker is the second most famous one.
User impersonation in Kubernetes
I’m writing this blog post to remember how easily you can impersonate your requests to Kubernetes.
Distroless Container Images
Having smaller docker image size is always beneficial, because of smaller vector attack and from performance perspective.
syft - SBOM for container image
SBOM stands for Software Bill of Material it’s a list of components used to build your application.
Garmin Connect - acquire data
For more than a year I’ve been using Garmin Smartwatch it collects lots of data some of them a pretty valuable for me.
Terraform - pre and post conditions
The latest version of Terraform 1.2 introduces a nice feature around check conditions.
Powerlevel10k - k8s context colors
Having a single kubeconfig with all your kubernetes contexts is a bonus because you can easily switch between contexts pretty quickly using kubectx or mkubectx.
Kubernetes Port Forward in details
One useful switch in kubectl is port-forward. The official definition is pretty short: