Kubernetes Podcast from Google

This episode Kaslin went to KubeCon North America In Chicago. She spoke to folks on the ground, asked them about their impressions of the conference, and collected a bunch of cool responses. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Google researchers discover 'Reptar,' a new CPU vulnerability Reptar by Tavis Ormandy Tim Hockin: Kubernetes Needs a Complexity Budget Kubernetes' Tim Hockin on a decade of dominance and the future of AI in open source Keynote: A Vision for Vision - Kubernetes in Its Second Decade - Tim Hockin Open and Secure: A Manual for Practicing Thread Modeling to Assess and Fortify Open Source and Security Announcing our latest book release: a comprehensive security guide to assess and fortify open source security Links from the interview CNCF LLM Starter Pack Crossplane Web Assembly Intro to Kubernetes Gateway API Links from the post-interview chat SIG ContribEx Comms Team Rap by Bart Farrell

Jesper Larsson is a Freelance PenTester. Jesper works with a hacker community called Cure53. Co-organizes SecurityFest in Gothenburg, Sweden. Hosts Säkerhetspodcasten or The Security Podcast. Jesper is also a Star on Hackad, a Swedish TV Series about hacking. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Kubernetes Removals, Deprecations, and Major Changes in Kubernetes 1.29 Introducing SIG etcd etcd, with Marek Siarkowicz and Wenjia Zhang (The Kubernetes Podcast from Google) WebAssembly (WASM) and OpenShift: A Powerful Duo for Modern Applications Linux Foundation Events Pass the torch in ContribEx #7603 Links from the interview Cure53 Hacker Community Säkerhetspodcasten Hackad TV Show on IMDB SecurityFest Gothenburg Falco by Sysdig Wolfi by Chainguard The Untold Story of NotPetya, the Most Devastating Cyberattack in History Links from the post-interview chat The Untold Story of NotPetya, the Most Devastating Cyberattack in History

Fabian Kammel is a Security Architect at ControlPlane, where he helps to make the (cloud-native) world a safer place. In his career, he continuously worked to bring hardware security and cloud-native security closer together. His past projects include: * A cloud-native PKIs for on-road vehicle services secured by enterprise HSMs * An always-encrypted Kubernetes distribution that harnesses the power of Confidential Computing * And more recently securing SPIFFE-based machine identities via hardware attestation. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod Links from the interview Confidential Computing Blog from kubernetes.io Confidential Computing Consortium Confidential Computing Whitepaper Intel SGX Enclave Swap Memory with Kubernetes in Beta in 1.28 Hardware Security Modules Trusted Platform Modules (TPM) Envelope Encryption Confidential Computing Concepts - Confidential Virtual Machine AMD Secure Encrypted Virtualization (AMD SEV) AMD Secure Encrypted Virtualization - Secure Nested Paging (AMD SEV SNP) Trusted Computing Base (TCB) Remote Attestation Confidentiality, Integrity, and Availability: The CIA Triad Intel SGX Enclaves Confidential Containers (CoCo) Katacontainers AWS Firecracker

Guests are Marek Siarkowicz , Senior Software Engineer in Google Cloud, Tech Lead of SIG-etcd AND Wenjia Zhang, Engineering Manager in Google Cloud, Co-Chair of SIG-etcd, Google. We spoke about the project, the recent change to become a Special Interest Group and how to learn etcd. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Co-host this week is Mofi Rahman [X, LinkedIn]. Cloud Developer Advocate at Google Karpenter graduated to Beta The Kubernetes SIG Network announced release 1.0 of the Gateway API Ingress2gateway new CLI to migrate from Ingress to Gateway The Call for Proposals for KubeCon EU 2024 will close on Nov 26, 2023 Links from the interview etcd Meaning of etcd etcd history from CoreOs Raft paper On the Hunt for Etcd Data Inconsistencies by Marek Siarkowicz - [youtube] Lessons Learned From Etcd the Data Inconsistency Issues by Marek Siarkowicz - [youtube] The first pancake rule etcd as a Kubernetes sig The Case for SIG-ifying etcd CNCF Contributor License Agreements (CLA) Kubernetes Prow Contributor Experience Special Interest Group Kubernetes Watch Go Serialization and Deserialization Cilium with external etcd Certified Kubernetes Administrator etcd mentorship program etcd @kubecon NA 2023 Links from the post-interview chat Kubernetes considerations for large clusters Operating etcd clusters for Kubernetes Kueue etcd on the podcast The Heartbleed Bug XKCD meme about dependency

WasmCon took place in BELLEVUE, WASHINGTON on Sept 6-7 2023. Kaslin and Mia from our advocacy team went down there and spoke to some folks at the conference to get their impression of the event. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Mia Villaseñor: Twitter/X LinkedIn Cilium Graduated Docker AI apps tools Kubernetes steering committee election results CRI-O moved to Kubernetes owned repository CNCF TOC voted to archive the SMI project Links from the interview WasmCon 2023 Guests Dan Wilson Hood Chatham Brendan Irvine-Broque Josh Berkus Kevin Zheng Sid Hussmann Dawn Parzych Daiki Akasaka Radu Matei Dan Mihai Dumitriu Russell Ashi Chris Madison Brooks Townsend Open Policy Agent V8 Gapfruit OS WASI Capabilities Trusted Compute Group Trusted Platform Module (TPM) Jnode Midokura WASM Runtime Cosmonic Cloud CNCF WasmCloud Wasm Components Model WASI WasmTimeSQLite in Wasm talk at WasmCon AI and Wasm talk at WasmCon Envoy and Wasm The WIT format Cloudflare RU workers Wasm and Kubernetes Wasm and Kubernetes case study Doom on Cloudflare workers with Wasm Wasm and bosch by Emily Ruppel Dynamic Linking Python Dynamic Linking in Wasm from Wasm I/O 23 Links from the post-interview chat Podcast episode#208 with Phil estes Podcast episode#203 with Justin Cormack

This week we explore what's new in Istio with core maintainers John Howard and Keith Mattix Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Announcing Linkerd 2.14: Improved enterprise multi-cluster, Gateway API conformance, and more! Amazon to invest up to $4 billion in AI startup Anthropic KubeCon EU 2024 CFP is open until November 26th CNCF Security Slam NEW Certification: Istio Certified Associate (ICA) npm packages caught exfiltrating Kubernetes config, SSH keys Links from the interview Kubernetes Native Sidecars in Istio (Blog from Istio) Kubernetes v1.28: Introducing native sidecar containers Argo Workflows Apache Airflow Envoy Proxy Istio Ambient Mesh Introducing Rust-Based Ztunnel for Istio Ambient Service Mesh eBPF Kernel TLS HTTP Based Overlay Network Environment (HBONE) KubeCon EU 2023: "Future of Service Mesh - Sidecar or Sidecarless or Proxyless?" - Idit Levine & Yuval Kohavi, Solo.io; Keith Mattix II, Microsoft; Eric Van Norman, IBM; John Howard, Google Istio Ambient Waypoint Proxy Made Simple kiali.io Kubernetes Gateway API (Istio) Getting Started with Istio and Kubernetes Gateway API Istio Desitination Rule Announcing Istio's graduation within the CNCF Istio sails into the Cloud Native Computing Foundation (CNCF Blog)

This week we explore the history of containers, particularly containerd, with Phil Estes. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Notary Project announces a major release! (Blog) Kubernetes Legacy Package Repositories Will Be Frozen On September 13, 2023 (Blog) Gateway API v0.8.0: Introducing Service Mesh Support (Blog) Amazon VPC CNI now supports Kubernetes Network Policies (Blog) Introducing VMware Tanzu Developer Portal: Empowering Developers with Enterprise-Grade Backstage Google Cloud Next page Google Cloud Next Blogs Google Cloud Post-Next Videos KubeCon NA 2023 Schedule Rig.dev startup (Blog) Links from the interview Docker Containerd Chroot (archlinux wiki) Linux namespaces (Linux man page) runC announcement (2015) runC on Github Containerd project creation announcement (2016) Containerd donation to CNCF announcement (2017) Containerd graduation announcement (2019) Container Runtime Interface (CRI) Kubernetes SIG Node Dockershim debacle (kubernetes.io blog) Dockershim deprecation FAQ (kubernetes.io blog) Mirantis-owned cri-dockershim on Github Open Container Initiative (OCI) Cloud Native Computing Foundation (CNCF) CoreOS ("What was CoreOS" blog by RedHat) Rkt ("What is Rkt" blog by RedHat) Kinvolk BlaBlaCar BlaBlaCar Case Study on Google Cloud gRPC gVisor Kata Containers Docker && WASM with Justin Cormack (Docker CTO) on the Kubernetes Podcast from Google WasmEdge (A Wasm runtime) CRI-O (lightweight container runtime for Kubernetes) Containerd scope and principles nerdctl: Docker-compatible CLI for containerd Docker Buildkit github.com/container-image, github.com/container-storage Podman Skopeo Firecracker microvms Intel Clear Containers Hyper.sh Open Infrastructure Foundation OpenStack Cloud Native Rejekts "Face off: VMs vs. Containers vs Firecracker" by Alex Ellis at Cloud Native Rejekts EU 2023 Links from the post-interview chat Keynote: Reperforming a Nobel Prize Discovery on Kubernetes - Ricardo Rocha & Lukas Heinrich Keynote: CERN Experiences - Ricardo Rocha & Clenimar Filemon Jesse Frazelle's container escape challenge used to be at contained.af, but it doesn't seem to exist anymore. Containers from Scratch - Liz Rice at GOTO 2018 (there are a bunch of recordings of this talk) Mirantis-owned cri-dockershim on Github

Guest is Grace Nguyen. Kubernetes 1.28 release lead and student at the University of Waterloo. Grace had to juggle exams and community work to bring Kubernetes 1.28 to life. We will get to know grace and learn what work went into release, where the theme come from and what's special about it Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Docker Desktop 4.22 is live The CNCF announced the End User Technical Advisory Board The Go community released v1.21 Configu raised a $3M pre-seed round Links from the interview Grace Nguyen LinkedIn X Kubernetes SIG-Security Kubernetes 1.28 Planternetes API Awareness of SideCars Native SideCar containers in Istio pkgs.k8s.io: Kubernetes Community-Owned Package Repositories Expanding support skew between control plane and node components Non-Graceful node shutdown Pod replacement policy for Jobs (alpha) Match conditions for admission webhooks Feature graduations and deprecations in Kubernetes v1.28 Kubernetes 1.28 webinar. Sept 6th 2023 9am PDT Kubernetes 1.29 PR to assemble team Kubernetes 1.29 shadow program is open Kubernetes 1.27 release lead Xander Grzywinski Links from the post-interview chat Beta support for enabling swap space on Linux SideCars handling is the most popular issue on kubernetes tracker Reddit conversation about native SideCars Native SideCars explained

Guests are Wesley Hales and Max Bruce are co-founders of LeakSignal. LeakSignal is an American startup which is building a set of tools and products to detect and prevent data exfiltration in Service Meshes and proxies supporting Envoy and proxy-wasm. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Dragonfly v2.0.1 is released Redhat Terraform Provider for ROSA Preview Microsoft Azure Operator Nexus Hashicorp Adopts BSL Blog Open Source Security Foundation S2C2F Kubernetes and Cloud Native events Q4, 2023 WasmCon on Sept 6 and 7 in Bellevue, Washington The Open Source Summit EU on Sept 19 to 21 in Bilbao, Spain GRPC Conf on Sept 20 in Sunnyvale, California Virtual IstioCon on Sept 25 and 26. KubeCon, Cloud NativeCon And Open Source Summit China on Sept 26 to 28 in Shanghai, China PromCon EU on Sept 28 and 29 in Berlin, Germany KubeCon and CloudNativeCon NA on Nov 6 to 9 in Chicago, Illinois. KubeDay India On December 8 in Bangalore KubeDay Singapore on December 12 Fermyon added SQL Database support and custom domains to their Wasm Cloud Platform Exposed Kubernetes Clusters are everywhere Links from the Interview LeakSignal LeakSignal GitHub OpenShift Apigee Keyhouse Spiffe WebSockets gRPC Wasm Envoy Nginx AWS Lambda Proxy Wasm Istio Proxy Wasm Apisix Istio Prometheus PCI Compliance Cloud Armor Blog post about Cloud Armor WAF capabilities Akamai eBPF Links from the post-interview chat Envoy Mobile

"The State of Kubernetes Cost Optimization," is a recent report based on research into best practices for running Kubernetes clusters. If you're running your workloads as efficiently as possible, your costs will be optimal too. The report reviews the data and offers recommendations on tools and techniques you can use to optimize your Kubernetes clusters. We talk with two of the report's creators, Fernando Rubbo and Kent Hua, to learn more. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week - CNCF Istio Graduation blog - Istio's blog about CNCF Graduation - CNCF Blog on Flux v2 GA release - Redhat Blog on Kubevirt 1.0 - Pulumi blog on v4.0 of their Kubernetes Provider - VMware Wasm Labs blog on serverless with wasm - CNCF announcement of over 30 new members - VMware docs on self-hosted Tanzu Links from the interview - The State of Kubernetes Cost Optimization report - "Sharing the inaugural State of Kubernetes Cost Optimization report" blog - Resource Management for Pods and Containers (Kubernetes Documentation) Links from the post-interview chat - Google Site Reliability Engineering (SRE) books - Google Cloud Managed Service for Prometheus

This week we speak to GKE Project Manager, Nicholas Eberts, about Platform Engineering. He draws from his considerable experience both with the Cloud Native community and working with businesses to set up their cloud platforms to explore the trend. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week - Kubernetes binary distribution via CDN at dl.k8s.io - OpenShift Service Mesh version 2.4 - AWS Signer - KubeCon CloudNativeCon North America 2023 registration - KubeCon CloudNatieCon and Open Source Summit China 2023 registration - Kubernetes Bill of Materials CLI from KSOC Labs - Blog - GitHub - CNCF Blog "Version after version: how the open source project Kubernetes releases its software" Links from the interview Nicholas Eberts: - Twitter - LinkedIn - Abdel tweeting about Platform Engineering - "DevOps is dead, long live Platform Engineering" tweet - DORA (DevOps Research and Assessment) - Charity Majors on the Hacking the Org Podcast - Charity Majors on the DevInterrupted Podcast - Open Service Broker - CNCF Landscape - Google Bard

This week we speak to Justin Cormack the CTO of Docker. We talked about WASM (or WebAssembly Modules), Docker support for running WASM apps and the future of the technology. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week WASMCon 2023: CFP Event Kyverno Project 1.10 Intro to Cilium course Microsoft Azure Linux is GA CNCF Glossary German edition is live Google C3 Machine family is available for GKE ChainGuard move from Github Registry to self-hosted Amazon Pull through cache on AWS container registry Links from the interview Justin Cormack: Twitter LinkedIn Docker WebAssembly Docker+WASM asm.js asmjs.org V8 Javascript engine Google Sandboxing WebGPU ByteCode Alliance Containerd Mesos WASM Edge

In this episode we bring you with us to KubeCon EU 2023 in Amsterdam, Netherlands. We interviewed several attendees about their experience at the conference. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod Featuring: Adnan Hodzic Anisoara-Ionela Dominique Top Ixchel Ruiz Livia-Maria Ciobanu Magarita Manterola Mark Mandel Peter O'Neill Whitney Lee Zoe Steinkamp News of the week Kubernetes SIG Infra migrating some CI jobs to AWS Kubernetes 1.26 now Generally Available on GKE Software Supply Chain Security startup Stacklock, by Craig McLuckie and Luke Hinds raised 17.5M$ Kubernetes SIG Testing End to End Testing Best Practices update Knative version 1.10 release KubeDay Israel schedule Links from the interview Kubernetes, Resistance is Futile - Adnan Hodzic, ING Choose Your Own Adventure: The Treacherous Trek to Development - Whitney Lee, VMware & Viktor Farcic, Upbound Agones + Quil;kin: Kubernetes Game Server Orchestration and UDP Service Mesh - Mark Mandel, Google Cloud Open Policy Agent eBPF Build Your Own Path in the Cloud Native Ecosystem - Rich Burroughs, Loft Labs & Kaslin Fields, Google (Whitney mentioned learning about eBPF in this talk) Google Cloud Anthos PlayStation and Kubernetes: How to Solve a Problem Like Real-Time Story of Our Transition to a Custom Kubernetes Operator for an API Gateway - Vincent Behar, Ubisoft CNCF TAG App Delivery Cloud Native Buildpacks Kuberoke

Xander Grzywinski is a Senior Open Source Product Manager at Microsoft and the Kubernetes 1.27 release lead. We interviewed Xander to explore some highlights from the release, and discuss a bit about what it's like to work with the release team. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Traefik Labs Launches Traefik Hub Software Supply Chain Security Assessment: Prometheus Argo CD CNCF Spring 2023 Cloud Native Ambassadors Updates to the Auto-refreshing Official CVE Feed What's New in Red Hat OpenShift Virtualization 4.12 Azure Kubernetes upgrades and Long Term Support KubeCon SHANGHAI, CHINA is back on Sept 26-28, 2023 CFP Closes on June 18, 2023 KubeCon NA takes place on Nov 6-9, 2023 in Chicago, Illinois CFP Closes on June 18, 2023 KubeCon EU 2024 takes place on Mar 19-22 in Paris, France Introducing Sessionize: a new CFP platform for CNCF events Manage Amazon EKS Clusters with New VMware Tanzu Mission Control Features Google Cloud turned profit for the first time according to the earning call of Q1 2023 Links from the interview Xander Grzywinsk: Twitter LinkedIn Pod Security Policies KEP 753: Sidecar containers Kubernetes 1.27 Release team Kubernetes 1.27: Chill Vibes Freeze k8s.gcr.io image registry Kubernetes Vertical Pod Autoscaler Kubernetes Removals and Major Changes In v1.27 Kyverno — verify Kubernetes control plane images Kubernetes 1.27: StatefulSet PVC Auto-Deletion (beta) Kubernetes 1.27: Query Node Logs Using The Kubelet API Kubernetes 1.27: Efficient SELinux volume relabeling (Beta) Kubernetes 1.27: StatefulSet Start Ordinal Simplifies Migration Kubernetes 1.27: Introducing An API For Volume Group Snapshots Kubernetes 1.27: Quality-of-Service for Memory Resources (alpha) Kubernetes 1.27: Vertical Pod Autoscaler supporting in-place updates Kubernetes 1.27: Server Side Field Validation and OpenAPI V3 move to GA Kubernetes 1.27: More fine-grained pod topology spread policies reached beta Kubernetes 1.27: Single Pod Access Mode for PersistentVolumes Graduates to Beta Kubernetes 1.27: HorizontalPodAutoscaler ContainerResource type metric moves to beta Links from the post-interview chat GKE Workload rightsizing

Paris Pittman is a Senior Program Manager at the Open Source Program office at Apple. A Prominent Kubernetes and CNCF member who served many roles with a focus on community and governance. Paris was on some key milestones for this show. First appearance was on Episode 1 and later on Episode 100. So we could not be happier to have Paris back in Episode 200. We discussed how Paris got started with community work and how the experience has been. Paris shared with us some words of wisdom on the power of working with others and the importance of moving on. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week KCD Amsterdam Retro AWS announced Data on EKS Kubecon EU 2023 "Security Village" Podman desktop released version 0.14 Keycloak joined CNCF as an incubating project Kubernetes v1.27 code name Chill Vibes was released The CNCF "Cloud Native Explorers" - Amsterdam Edition CNCF white paper on Platforms for Cloud Native Computing GKE Autopilot is now the default mode of operations for new clusters Links from the interview Paris Pittman: Linkedin Twitter Mastodon (@[email protected]) OSCON 2016 Sarah Novotny Kaslin is a new chair of SIG contribX

In this episode we bring you with us to Southern California Linux Expo, or SCaLE20x in Pasadena, California. We interviewed several attendees about their experience at the conference. Featuring: Robin Phantomhive, attendee at SCaLE and community member Mofi Rahman, Developer Advocate at Google Fatima Sarah Khalid, Dev Evangelist at GitLab Bryan Behrenshausen, Open Source Program Manager at GitLab Laura Santamaria, Geek with an achievement streak at Dell Jeff Deifik, Cybersecurity at Aerospace Corp Jill Bryant Ryniker of LWDW and the Destination Linux Podcast Bill Schouten of Tux Digital and the Sudo Show Podcast Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Chainguard contributes Rekor Search Project to Sigstore Docker and Ambassador Labs Announce Telepresence for Docker, Improving the Kubernetes Development Experience Docker, Inc. Celebrates 10th Anniversary With Alliances Oracle Cloud Infrastructure to Increase the Reliability, Efficiency, and Simplicity of Large-Scale Kubernetes Environments at Reduced Costs cdCon / GitOpsCon Schedule Crossplane Security Audit Crossplane completes fuzzing security audit Improving Security by Fuzzing the CNCF landscape Report Links from the interview Destination Linux Podcast LWDW LinuxChix LA Sudo Show Podcast Tux Digital Creating a cluster with kubeadm

David Flanagan is a developer, educator and technology enthusiast with a special interest for Kubernetes and Cloud Native technologies. David is the founder of Rawkode Academy, an online platform aiming at teaching kubernetes to developers. One of the popular shows on RawKode is Klustered. Where david invites people to fix broken kubernetes clusters, learn a thing or two and have a laugh Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week Istio Ambient Mesh merged into the main branch Kubernetes 1.27 changes and removals k8s.gcr.io to registry.k8s.io redirect Preview support for pod sandbox on Azure Kubernetes Services Katacontainers Docker apologies for handling Free Teams deprecation Schedule for CNCF-hosted and colocated events is up Kubernetes WithOut Kubelet CrowdStrike Discovers First-Ever Dero Cryptojacking Campaign Targeting Kubernetes Links from the interview David Flanagan Twitter Linkedin RawKode Academy Klustered How Spotify Accidentally Deleted All its Kube Clusters with No User Impact - David Xia You probably DON'T need a service mesh Klustered episode with Abdel and Marek Docker first release at PyCon 2013 KubeHuddle 2023 Toronto Kubernetes Failure Stories Kubelete runOnce flag Cilium Hubble Telnet Talkers Teamrock MUD's eBPF

Emily Fox is a security engineer @Apple Cloud Services, a CNCF Technical Oversight Committee member and co-chair for a bunch of CNCF events including recently the Cloud Native Security Conference in Seattle. We had a chance to talk to Emily about the first edition of the CNSC 2023, her involvement with the CNCF community. Her role as a security engineer and some career discussions. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod News of the week KubeEdge v1.13.0 released on January 18, 2023, achieves SLSA 3 compliance SLSA 3 compliance KubeVela brings software delivery control plane capabilities to CNCF Incubator GKE Updates: Balanced compute classes are now offered in GKE Autopilot GKE Autopilot now supports exposing randomly assigned host ports for pods GKE has started offering ephemeral storage with local SSDs Added support for Windows Server 2022 nodes AWS announced the availability of AKS anywhere on Snowball Edge Devices Sysdig released their 6th annual Cloud Native Security and Usage Report. Rebooting the Cloud Native Hamburg community group KubeCon EU Amsterdam Schedule Katacoda Kubernetes tutorials shutdown LFX Internships for WASMEdge Kubernetes Community Days (KCDs): Upcoming CFP deadlines: KCD Italy CFP closes February 20 2023 (in-person) KCD Czech + Slovak CFP closes March 1, 2023 (in-person) KCD Bangaluru CFP closes March 20, 2023 (in-person) KCD Zurich CFP closes March 31, 2023 (in-person) KCD Colombia CFP closes March 31, 2023 (in-person) Check out upcoming KCDs that might be in your region: Sponsorship opportunities are available Donation Prospectus available for review KCD Israel 2023, Mar 23, 2023 KCD LA, Mar 9, 2023 KCD Pakistan (Islamabad), February 20, 2023 KCD Netherlands (Amsterdam), February 23-24, 2023 KCD France (Paris), March 7, 2023 KCD Los Angeles, March 9-10, 2023 KCD Ukraine Virtual Fundraiser, March 16, 2023 Links from the interview Emily Fox: Twitter Linkedin Cloud Native Security Con Youtube Playlist How to Secure Your Supply Chain at Scale - Hemil Kadakia & Yonghe Zhao, Yahoo eBPF CIA Triad Waterfall development Cloudcareers.dev podcast Rory McCune on twitter Software Supply Chain Security Emily Fox on SBOM Emily Fox on SDLC Shift Left Security: Best Practices for Getting Started Episode 196 with Benjamin Elder CNSC 2023 seattle guests David Wolf Eric Knauer Liz Rice Mitch Connors Josh Knarr Nick Young Taylor Dolezal Frederick Kautz on SPIFFE/SPIRE Chris Aniszczyk's Blog The Falco Project Cilium Tetragon Pixie Aviatrix Keylime Google Anthos Beyond Cluster-Admin: Getting Started with Kubernetes Users and Permissions - Tiffany Jernigan Standardization & Security - A Perfect Match - Ravi Devineni & Vinny Carpenter, Northwestern Mutual CSI Container: Can You DFIR It? - Alberto Pellitteri & Stefano Chierici, Sysdig Links from the post-interview chat Cloud Native Security Con Eu 2023 CNCF TOC

Benjamin Elder is a Senior Software Engineer at Google, a Kubernetes SIG Testing Chair & Tech Lead, and a Kubernetes Steering Committee member. In this episode we got to chat with Benjamin about the new kubernetes registry migration from k8s.gcr.io to registry.k8s.io. We also had an opportunity to discuss the community, the various SIG's (Special Interest Groups) Benjamin is involved with the amount of work needed to drive the project forward. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod Chatter of the week Google Developer Experts program. ChatGPT. OpenAI Case Study. Kubernetes Jobs API. Job Tracking, to Support Massively Parallel Batch Workloads, Is GA in kubernetes 1.26. Stateful apps on Kubernetes. Kelsey Hightower's take on Databases on Kubernetes twitter space. Kubernetes Resources Model News of the week Linkerd published a 2022 recap The CNCF Cloud Native Maturity Model The CNCF Cloud Native Maturity Model website Using Amazon EKS with Google Workspace identities CNCF Ambassador 2.0 program Cloud Native Security Con NA 2023 (website - recordings) The CNCF important updates for KubeCon + CloudNativeCon 2023 and co-located events Kubernetes 1.26 news: https://kubernetes.io/blog/ Eviction policy for unhealthy pods guarded by PodDisruptionBudgets:https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/ Retroactive Default StorageClass: https://kubernetes.io/blog/2023/01/05/retroactive-default-storage-class/ Alpha support for cross-namespace storage data sources: https://kubernetes.io/blog/2023/01/02/cross-namespace-data-sources-alpha/ Advancements in Kubernetes Traffic Engineering: https://kubernetes.io/blog/2022/12/30/advancements-in-kubernetes-traffic-engineering/ Job Tracking, to Support Massively Parallel Batch Workloads, Is Generally Available: https://kubernetes.io/blog/2022/12/29/scalable-job-tracking-ga/ CPUManager goes GA: https://kubernetes.io/blog/2022/12/27/cpumanager-ga/ Pod Scheduling Readiness: https://kubernetes.io/blog/2022/12/26/pod-scheduling-readiness-alpha/ Support for Passing Pod fsGroup to CSI Drivers At Mount Time: https://kubernetes.io/blog/2022/12/23/kubernetes-12-06-fsgroup-on-mount/ GA Support for Kubelet Credential Providers: https://kubernetes.io/blog/2022/12/22/kubelet-credential-providers/ Introducing Validating Admission Policies: https://kubernetes.io/blog/2022/12/20/validating-admission-policies-alpha/ Device Manager graduates to GA: https://kubernetes.io/blog/2022/12/19/devicemanager-ga/ Non-Graceful Node Shutdown Moves to Beta: https://kubernetes.io/blog/2022/12/16/kubernetes-1-26-non-graceful-node-shutdown-beta/ Alpha API For Dynamic Resource Allocation: https://kubernetes.io/blog/2022/12/15/dynamic-resource-allocation/ Windows HostProcess Containers Are Generally Available: https://kubernetes.io/blog/2022/12/13/windows-host-process-containers-ga/ We're now signing our binary release artifacts!: https://kubernetes.io/blog/2022/12/12/kubernetes-release-artifact-signing/ Links from the interview Benjamin Elder LinkedIn Github Twitter Kubernetes Steering Committee Kubernetes SIG Testing Kubernetes IN Docker (KIND) Benjamin on the podcast episode 96 Paris Pittman LinkedIN Twitter Kubernetes registry move from k8s.gcr.io to registry.k8s.io Archeio is the tool used to redirect to GCR or S3 depending on the client. The design of how requests are handled. Doc detailing the background of this migration. Kubernetes SIG Contributor Experience Kubernetes Slack channel

Leonard Pahlke is not only the Release Lead for Kubernetes v1.26, he's also a co-chair of the CNCF TAG for Environmental Sustainability and a student working toward a Master's Degree in Computer Science at the Hamburg University of Applied Sciences. In this episode, Leonard talks with us about Open Source contribution, environmental sustainability, and Kubernetes v1.26. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: [email protected] - twitter: @kubernetespod Chatter of the week The 1.23 Release team (where Kaslin was a comms shadow) Shoutout to Kunal Kushwaha, another Kubernetes contributor who started out as a student, and who advocates for students in the community via his YouTube channel & more. KubeCon EU 2023 (which will have a student track as part of the schedule) KubeCon Diversity and Inclusion Scholarships News of the week Kubernetes Removals, Deprecations, and Major Changes in 1.26 AWS ReInvent 2022 AWS YouTube Channel Control Plane Logs added for GKE Gateway Controller for Single Clusters reaches GA for GKE Prometheus Turns 10 Prometheus Training Prometheus Documentary by HoneyPot Move to registry.k8s.io Leak Signal Micro-waf CNCF Maintainer Track changes Links from the interview Leonard Pahlke's Blog Leonard Pahlke blog about contribution: Start Contributing to Open Source Projects Leonard Pahlke CNCF WG Environmental Sustainablity Blog Post TAG Environmental Sustainability GitHub Specific 1.26 changes mentioned: Kubernetes 1.26: We're now signing our binary release artifacts! Kubernetes 1.26: Windows HostProcess Containers Are Generally Available CEL for Admission Control KEP In-tree Storage Plugin to CSI Migration - Azurefile In-tree Storage Plugin to CSI Migration - vSphere In-tree storage plugin removals for GlusterFS and OpenStack, and more, are outlined in the "Kubernetes Removals, Deprecations, and Major Changes in 1.26" blog Kubernetes Enhancement Proposals (KEPs) Kubernetes v1.26 Electrifying Release Blog Links from the post-interview chat List of Kubernetes SIGs Kubernetes Release Team Shadow program

Louis Bailleul is a Chief Enterprise Architect at PGS. After years of running highly-ranked super computers to process PGS' seismic data, Louis's team at PGS has lead a transition to Google Cloud. Listen in to learn about HPC in Google Cloud with GKE, and to explore using Kubernetes to do processing on vessels at sea! Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Listen to the KubeCon NA 2022 recap episode News of the week Docker + Wasm Istio control plane vulnerability CVE-2022-39278 KubeFlow joins CNCF as an Incubating Project CNCF Backstage course CNCF Istio intro course Links from the interview PGS A picture of a PGS vessel PGS post from 2021 about their supercomputing rankings and transition to Google Cloud Top500 List Kubernetes Custom Resources (CRDs) Scaling Kubernetes to Thousands of CRDs Google Cloud Spot Instances Google Cloud Preemptible VM Instances Google Cloud - Manage capacity and quota KubeCon NA 2019: How the Department of Defense Moved to Kubernetes and Istio - Nicolas Chaillan Bare Metal K8s Clustering at Chick-fil-A Scale by Brian Chambers, Caleb Hurd, and Alex Crane

In this episode we bring you with us to KubeCon NA 2022 in Detroit, Michigan. We interviewed 15 attendees from various backgrounds and learned some cool insights. Featuring: Mo Khan, Software Engineer, Microsoft. Katrina Verey, Senior Staff Production Engineer, Shopify. Aishwarya Harpale, Student, Rutgers University. Jeffery Sica, Principal Developer Experience Engineer, CNCF. Kirsten Schumy, Software Engineer, AWS. John-Paul Robinson, HPC Architect, University of Alabama at Birmingham. Madhav Jivrajani, Software Engineer, Vmware. Leigh Capili, Developer Advocate, Vmware Tanzu. Nim Jayawardena, Developer Programs Engineer, Google. Charlie Yu, Developer Programs Engineer, Google. Ahrar Monsur, Developer Programs Engineer, Google. Mickey Boxell, Product Manager, Oracle. Eddie Zaneski, Software Engineer, Chainuard. Andy Piggott, Chief Product Officer, Section. Logan Smith, Director of Business Development, GrafanaLabs. Brian Dorsey, Developer Advocate, Google - Shoutout for recommending the microphones for interviews. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod News of the week CrowdStrike cryptojacking finding Skaffold v2 Generally Available GKE Security Posture Dashboard Blog Video Cdk8s+ from AWS Blog Project page CNCF Sandbox project application information Istio becomes a CNCF Incubating project Cert-manager becomes a CNCF Incubating project Cisco OpenClarity Kube-router bug Google Cloud Next Wrap-Up Microsoft Ignite highlights blog Cloud Native SecurityCon Linux Foundation partnership with Razom for Ukraine Links from the interview Kubernetes SIG Auth Kubernetes SIG API Machinery FluxCD Online Boutique Sample App Kubernetes SIG-CLI Cloud Native 101: Motor City Edition by Bob Killen and Jeffrey Sica Consumers to Contributors by Brendan O'Leary Kubernet-Bees: How Bees Solve the Problems of Distributed Systems SchedMD Slurm Kube-bind Contribute to etcd! Cloud Native WASM Day Cloud Native SecurityCon Backstage (Incubating CNCF Project) eBPF Cilium (Incubating CNCF Project) Acorn Labs Vulcan Mind-Meld (Star Trek) Kids' Day at KubeCon NA 2022

After four and a half years hosting this podcast (and almost 9 years at Google) Craig Box is moving on from the latter, which unfortunately means leaving the former. But the show must go on. In this episode Craig introduces new hosts Abdel Sghiouar and Kaslin Fields. We take a small look forward, and then a big look back. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Links from the show Adam's last episode Abdelfettah Sghiouar Devoxx MA Cloud Careers Podcast You probably DON'T need a Service Mesh Kaslin Fields Containers as cookies Biscuits and gravy Contributor comms First-gen stickers Second-gen stickers Episode 60, with Mark Shuttleworth Episode 15, with Dan Ciruli and Jasmine Jaksic Dan on sticker duty Episode 30, with Joe Zou A rare team photo Music and musicians Kaossilator Episode 191, with DJ Fresh Episode 127, with David Pait Episode 83, with Guinevere Saenger Episode 120, with Melanie Cebula Episode 121, with Ed Huang Double guest trivia: Episodes 1 and 100 with Paris Pittman Episodes 62 and 180 with Ricardo Rocha (on a technicality) The Adam face Corey Quinn: separated at birth? One of many booth meetups Follow Craig Box on Twitter Follow Adam Glick on LinkedIn

Dan Stein is an engineering manager at General Bioinformatics. Dan Stein is also DJ Fresh, a multi-million selling artist with two UK number one records. Learn about the surprising overlap between these two careers. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod and @craigbox Chatter of the week Trevor Noah stepping down as host of Daily Show Follow @craigbox to learn what's next News of the week Google Cloud adds GPU support to Autopilot Pricing CVE-2021-36782 in Rancher State of DevOps Report for 2022 Congratulations to the 27 Summer LFX Program CNCF interns Reviewing the 2019 Kubernetes security audit Links from the interview DJ Fresh Atari 800 and Atari ST Pong Atari BASIC Commodore Amiga OctaMED Fatboy Slim and the Atari ST Dogs on Acid music forum Taylor Hawkins Tribute Concerts Abolishing the high tax rate in the UK, or not Breakbeat Kaos Hold Your Colour by Pendulum Kryptonite by DJ Fresh Gold Dust Subsequent hits: Louder Hot Right Now Kyma (sound design language) and Max/MSP We Got Coders General Bioinformatics NGS gene sequencing Ensembl Hasura GraphQL Playground NCBI - National Center for Biotechnology Information Max Martin How Music Works by John Powell Learning: Treehouse Udemy 3Blue1Brown Codeacademy DJ Fresh's new single, Higher DJ Fresh on Facebook Dan Stein on Twitter

Betty Junod, VP of Product Marketing at VMware Tanzu, kindly took up Craig's challenge to explain the various parts of the Tanzu ecosystem, and how the traditional IT buyer and the modern cloud native really aren't that different. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod and @craigbox Chatter of the week NASA DART mission Deep Impact Armageddon Apparent retrograde motion Planets beyond Neptune News of the week Istio sails into the CNCF SPIFFE and SPIRE graduate Episode 45, with Andrew Jessup Brigade archived Sysdig 2022 Cloud Native threat report The nice TeamTNT Episode 188, with Kateryna Ivashchenko Episode 169, with Anna Belak Chainguard introduces Wolfi workerd, from Cloudflare Introducing Palaemon Custom org policy for GKE in preview Leveraging Kubernetes for an elastic platform at Blablacar by Sebastien Doido Links from the interview VMware History Docker Solo.io VMware Tanzu introduction blog VMware acquires Heptio VMware acquires Pivotal Tanzu Mission Control Tanzu for Kubernetes Operations Tanzu Application Platform Tanzu Kubernetes Grid Bring your own host to TKG Project Pacific introduction TKG 2.0 VMware Aria Operations for Applications Tanzu Application Service Cloud Foundry Open source projects: Velero Antrea Carvel Cartographer Michigan cider Detroit-style pizza Betty Junod on Twitter

When you think of a service mesh, you probably think of "sidecar containers running with each pod". The Istio team has come up with a new approach, introduced recently as an experimental preview. Google Cloud software engineers Justin Pettit and Ethan Jackson join Craig to explore ambient mesh. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Listening immediately and listening on a 1 year delay Death and state funeral of Queen Elizabeth II The Queue What the queue says about our relationship with royalty News of the week Cloud Custodian becomes an incubating project Anthos VM support GKE control plane metrics CVE-2022-3172: Aggregated API server can cause clients to be redirected CVE-2021-25749: runAsNonRoot logic bypass for Windows containers Akuity Platform Episode 172, with Jesse Suen Weave GitOps 2022.09 Coroot Community Edition Constellation, by Edgeless Systems Register for Google Cloud Next Dell and Red Hat expand strategic collaboration Links from the interview Nicira Open vSwitch Introucing Ambient Mesh Service mesh First mention of Ambient in 2018 No first class support for sidecars in Kubernetes Istio working group meeting, August 2021 Remote proxy proposal HBONE: HTTP/2-based overlay network environment mTLS HTTP Connect GIF MASQUE and QUIC Get started with Ambient Mesh Ambient Mesh Security Deep Dive Justin Pettit and Ethan Jackson on Twitter

Kateryna Ivashchenko is a Senior Demand Generation Manager at Teleport, an organizer of community events, and a supporter of the developer community in her home country of Ukraine. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod News of the week Introducing Ambient Mesh in Istio Istio 1.15 Linkerd 2.12 Linkerd and the Gateway API Symbiosis Cuber nay-tace Reddit discussion VMware Tanzu announcments from VMware Explore Isovalent raises $40m Series B Kubernetes Blog: PodSecurityPolicy: The Historical Context Pod Security Admission Controller in Stable CSI Inline Volumes have graduated to GA cgroup v2 graduates to GA Kubernetes was never designed for batch jobs by Kurt Schelfthout 7 years of GKE General Availability Links from the interview Portworx Teleport 24 February 2022: Russia invades Ukraine BeyondCorp Teleport open source hunter2 Okta breach Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers by Andy Greenberg War in Ukraine Kateryna's sister's T-shirt Independence Day Chris Lentricchia and Operation Dvoretskyi CNCF crowdfunding DevOpsDays Kyiv International Snack Exchange Kateryna Ivashchenko on Twitter

It's release day! We discuss today's Kubernetes 1.25 with release team lead Cici Huang, Software Engineer at Google Cloud. What's in, what's out, and what is it like to lead a release you are also promoting a feature in? Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Nelson underwater England underwater A picture of a sheep Follow Craig on Twitter for more like that News of the week Kubernetes 1.25 release Introducing Acorn Acorn Labs: Rancher Co-Founders' New Kubernetes Startup by Christine Hall Episode 57, with Darren Shepherd GKE updates: New observability metrics GKE Autopilot now default 256 pods per node KubeCon schedule published Cloud Native Rejekts Scaling Kubernetes to thousands of CRDs by Nic Cope Links from the interview IBM Watson Kubernetes Community Awards SIG API Machinery Chair & Cici's hiring manager: Fede Bongiovanni Kubernetes 1.25 release team Release blog Highlights: PodSecurityPolicy is removed; Pod Security Admission is stable cgroups v2 KMS v2alpha1 CRD valdation experession language Registry change Kubernetes 1.24 delay Theme and logo Envelopes: 1.24 lead: Episode 178, with James Laverack 1.26 lead: Leonard Pahlke Cici Huang on GitHub

Three years after they were first proposed, the new Kubernetes Gateway APIs - the evolution of the Ingress API - are in Beta. Rob Scott is a software engineer at Google and a lead on the SIG Network Gateway API project. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Hot hot hot Stevenson screen Heathrow Airport Kew Gardens RAF Coningsby News of the week Argo security audit: Argo blog ADA Logics blog Episode 172, with Jesse Suen Kubernetes Cluster API integrates continuous fuzzing The report OSS Fuzz Cilium 1.12 GKE Cluster Autoscaler location policy The quest for neutrinos Ray traced Quake II Links from the interview Gateway API Spire Labs Fairwinds rbac-manager Polaris Episode 104, with Bowei Du Ingress Gateway API concepts and role-orientation Roles and resource model GatewayClass GKE implementation of GatewayClass Conformance tests Policy attachment Gateway Routes Gateway API goes to Beta GRPCRoute Gateway Enhancement Proposal (GEP) Istio APIs that influenced the Gateway API GAMMA Initiative Istio support for Gateway API SMI community joining Gateway API on GitHub Santa Cruz Moutains Rob Scott on Twitter and LinkedIn

Ian Miell is a partner at consultancy Container Solutions, and an author of books on Bash, Git, Terraform and Docker. He explains to Craig how writing - whether runbooks, blog posts, training courses, or "real" books, can help you learn and make your team more effective. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Hot hot hot Small pools and larger pools News of the week Gateway API goes to Beta Episode 104, with Bowei Du Istio support for Gateway API SMI community gets behind Gateway API Kyverno and Keptn move to incubation Episode 119, with Alois Reitbauer Tau T2A Arm VMs now on Google Compute Engine GKE support for Tau T2A Arm nodes Kubeshop acquires BotKube Exploiting Authentication in AWS IAM Authenticator for Kubernetes by Gafnit Amiga New Vulnerabilities in Kubernetes NGINX Ingress Controller CNCF sponsors audit of KubeEdge KubeEdge security threat model Audit report Red Hat announces new CEO Google Cloud announces new Distinguished Engineer Episode 185, with Clayton Coleman Links from the interview Zwischenzugs Business Value, Soccer Canteens, Engineer Retention, and the Bricklayer Fallacy Zwischenzug and zugzwang in chess Ian's books: Learn Bash The Hard Way Learn Git The Hard Way Learn Terraform The Hard Way All three in a bundle Docker in Practice Tcl Why are enterprises so slow? Erlang Episode 164, with Daniel Walsh 'AWS vs K8s' is the new 'Windows vs Linux' The Runbooks Project ITIL Consultancy: Episode 183, with Steve Wade Why it's great to be a consultant Container Solutions Finance topologies: Team Topologies by Manuel Pais and Matthew Skelton If You Want To Transform IT, Start With Finance Conway's Law Ian Miell on Twitter

Why does a car manufacturer own an IT company? How did that IT company end up running 900 Kubernetes clusters, starting at version 0.9? Craig asks these questions and more of Sabine Wolz, Product Manager at Mercedes-Benz Tech Innovation. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Live UK political coverage on the day of recording. As predicted, news happened slightly faster than publication, and at the time of release, Boris Johnson is expected to resign as Conservative Party leader today. Shibboleth Lord of the Rings TV show moved to UK News of the week GKE Cost Allocation CubeFS accepted as CNCF incubating project Bare metal deployments for EKS Anywhere Episode 142, with Gianluca Arbezzano Cubernetes Episode 20, with Justin Garrison OpenShift Service Mesh 2.2 Tanzu Mission Control adds FluxCD Pixie plugins What GKE users need to know about Kubernetes' new service account tokens, by Taahir Ahmed Kubernetes is a red flag signalling premature optimisation, by Jeremy Brown Hacker News discussion eBPF Summit 2022 Links from the interview Mercedes-Benz Tech Innovation Mercedes-Benz and Daimler Truck How should electric vehicles sound? Ulm and its church Sabine's KubeCon keynote How to Migrate 700 Kubernetes Clusters to Cluster API with Zero Downtime: Tobias Giese & Sean Schneeweiss Game theory FOSS Manifesto Inner source CNCF End User Community The promise of flying cars Sabine Wolz on LinkedIn

Gone are the days of working at the same company for 50 years. Consultants and contractors bring specialised experience to many companies in short bursts. Steve Wade is an independent Kubernetes consultant and trainer, and he tells us how that became the life for him. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Queen Bourton-on-the-Water, fire in the sky Model village Model village inception News of the week New GKE features: eBPF and IP masquerading in GKE Autopilot Dual stack networking Time-shared GPUs Confidential GKE nodes Paralus (by Rafay) Furiko (by Shopee) New CNCF Sandbox projects: Clusterpedia OpenCost Aeraki Mesh Curve OpenFeature Kubewarden DevStream Traefik Hub Cyble's exposed Kubernetes clusters Bitnami index FAQ Links from the interview Premier League Tesco Consultants and IR35 KSOC Indian food Steve Wade (1987) on Twitter

As we move further up the stack, we rely on many foundations – including storage. Alex Chircop is co-chair of the CNCF Storage Technical Advisory Group (TAG), as well as founder and CEO of Ondat (formerly StorageOS). Join us to learn why no app is truly stateless, and how data is the new storage. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Crowded House snippets: Distant Sun Sister Madly Don't Dream It's Over (you know this one) Weather With You Something So Strong How Will You Go News of the week Kubernetes 2021 annual report and blog post discussing it SUSECon news SLSA Level 4 The State of CD 2022 report Introducing OpenCost Spec Episode 124, with Webb Brown OSTIF and ADA Logics posts discussing the CRI-O project audit Bitnami Helm chart pruning and Reddit discussion Upcoming Code of Conduct changes at the CNCF Links from the interview Goldman Sachs on Google Cloud Episode 181, with Justin Santa Barbara KubeCon EU 2016 CNCF TAG Storage Data on Kubernetes community CNCF TAGs CNCF Storage WG talk at KubeCon EU 2019 CNCF TAG Storage talk at KubeCon EU 2022 Kubernetes SIG Storage Xing Yang CSI and COSI Quinton Hoole Federation, aka "Ubernetes" Whitepapers: Storage Disaster Recovery Ondat Updog Alex Chircop on Twitter

What is configuration as data, how is different from infrastructure as code, and why can't anything just be itself anymore? We posed these questions and more to long-time Kubernetes contributor Justin Santa Barbara at KubeCon EU, and this episode is the result. Justin created the kOps project and now leads the team at Google that makes Kubernetes easier to consume. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week #kubecovid Alhambra La Alhambra Cats of the Alhambra News of the week Cloud Native at Microsoft Build Azure Container Apps are GA AKS updates Docker acquires Tilt Broadcom acquires VMware FT coverage Customer reaction from The Register Istio 1.14 GKE Cost Estimator Goodbye to Katacoda Take the DORA survey or read the 2021 report Links from the interview FathomDB Meteor acquires FathomDB for its development platform Sherlocking OpenStack kOps GitHub Configuration management tools Infrastructure as Code JSON, YAML, Proto and INI Helm values.yaml Kubernetes Resource Model (KRM) kustonize kpt Package management Configuration as Data announcement blog Porch kpt functions Backstage Config Sync and Config Connector Kubernetes component configuration Cluster API Justin Santa Barbara on Twitter

Live from Valencia, it's KubeCon EU! Craig talks to conference co-chair and CERN computer scientist Ricardo Rocha about the event, and what it's like to be in a room full of people again. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week 9am Karaoke News of the week CNCF news from KubeCon EU: SlashData survey 800 members Boeing Coinbase Prometheus Certified Associate Google Cloud improves GitOps usability with Config Sync and Porch kpt Other Google news from KubeCon Tetragon from Isovalent Envoy Gateway Infra Ask HN with the creators Cloud Foundry launches Korifi SUSE NeuVector is open source CloudNativePG from EnterpriseDB All the other options Assured Open Source Software from Google Cloud Recent Guest news: Akuity announces $20m Series A (episode 172) Komodor raises $42 million Series B (episode 153) Deepfence launches Deepfence Cloud (episode 173) Lightning Round Armory announced public early access to their new Continuous Deployment-as-a-Service product Aserto announces its "better together" approach to authorization by bringing together OPA, OCI, and Sigstore Bunnyshell Introduces support for multi-repository Terraform with full-stack drift management and GitOps Calyptia announces the General Availability of Calyptia for Fluent Bit, CAST AI introduces advanced Autoscaler for AKS Clastix launches Kamaji, a new open source tool for Managed Kubernetes Service CloudCasa by Catalogic expands to support Microosft AKS Codenotary combines Community Attestation Service with background vulnerability scanning CodeZero Launches Surf, a new developer tool for observability in pre-production Kubernetes environments CrateDB introduces Logical Replication D2iQ Partners with GitLab DataCore Bolt container-native storage software now GA; built on their acquisition of Mayadata Datadog launches Application Security Monitoring and support for OpenTelemetry Protocol in the Datadog Agent, Deepfactor partners with Synopsys to help developers resolve cloud native supply chain security risks env0 enables full-stack IaC deployment and management with native Kubernetes support Era Software introduces EraStreams Fairwinds Insights unifies DevSecOps with additional shift-left enhancements GitLab free tier adds pull-based Kubernetes deployments Google announced a new low-cost, high-usage pricing tier for Google Cloud Managed Service for Prometheus HCL Technologies launches Kubernetes migration platform Kasten by Veeam launches K10 v5.0 released Runecast adds CI/CD integration and image scanning Lacework introduces new Kubernetes Audit Logs monitoring Loft Labs announces a Cluster API provider for vcluster NetFoundry embeds zero trust into Prometheus New Relic introduces low-overhead Kubernetes monitoring and Pixie plug-in framework Pure Storage's new Database as a Service platform is GA Replicated introduces community licensing and pre-flight checks SphereEx releases DB-Plus Suite Snapt announces security package to run Kubernetes in public cloud SPIRE now runs on Windows Sysdig launches new Advisor and Sysdig Open Source leverages Falco plugins SysEleven unveils MetaKube Operator Timescale announces OpenTelemetry Tracing support for Promscale Vultr Kubernetes Engine now Generally Available Zesty Disk for Kubernetes introduced Links from the interview Episode 62 Lukas Heinrich Clemens Lange CERN LHC Computing Grid Large Hadron Collider Kubeflow Data on Kubernetes Community CNCF Research User Group CNCF TOC Volcano moves to incubation KubeCon EU 2022 Episode 165, with Jasmine James Selection process report for KubeCon EU KubeCon China 2021 Research track Puppies at KubeCon NA 2019 Code, mountains and flying Kubernetes on an F/16 Ricardo Rocha on Twitter and on the web

Docker CEO Scott Johnston joins us to talk about the announcements from this week's DockerCon, the transition from an enterprise to a developer tools company, and the Internet's favourite whale. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Podes and antipodes Side note: Kubernetes needs the concept of an Antipod. BRB, writing a KEP Google Cloud Podcasts News of the week DockerCon 2022 Docker Extensions Docker Desktop for Linux Late breaking news: Docker acquires Nestybox Spot VMs now on GCE and GKE; spot pods now on GKE Autopilot Fully managed Linkerd with Buoyant Cloud Sign up for CDcon and save 40% by using the code CdCon22AMEET40 AWS adds Kubernetes resource view Deploying Kubernetes clusters in absurd languages by Lee Briggs Links from the interview Docker DockerCon '22 DockerCon '14, the announcement of Kubernetes Return or Revenge? Scott's history Four degrees from Stanford, including an MSMSE Sun and Netscape Java Servlets and J2EE Moore's Law and Metcalfe's Law Standard on the Internet Tom Lyon Loudcloud/Opsware and a16z Puppet Scott joins Docker in 2014 The monorepo The Soul of a New Machine Docker Swarm Messages from the future and the Google crystal ball Open Cotainers Initiative Docker Desktop for Apple Silicon Macs virtiofs for Mac $2.1 billion valuation Moby Project Moby Ice Cube The Dockershim saga, as reported throughout the episodes: Don't panic about Docker Dockershim deprecation FAQ Mirantis will support the Dockershim But seriously, don't worry about the Dockershim Dockershim is, like, proper gone The puns and joke section Docker is krilled to see you Billy T James Beached Az. Can't eat chups! Docker Extensions CNCF Landscape or Magic Eye? Docker Desktop for Linux Multi-arch on Docker Hub Docker roadmap Scott Johnston on Twitter

Gaze into the stars with Kubernetes 1.24 release team lead, James Laverack. James is a software engineer turned solutions engineer at Jetstack, and explains the difference between the two roles, as well as how he found his home in SIG Release and what to expect in 1.24. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week IMDB and MusicBrainz SheetOps xlskubectl by Daniele Polencic News of the week Kubernetes 1.24 Metaflow on Kubernetes KubeVela 1.3 SocketCAN X Kubernetes ARMO raises $30m Aqua's 2022 Cloud Native Threat Report CVE-2021-25746 in ingress-nginx About the fix Episode 162, with Alejandro de Brito Fontes and Ricardo Katz Plain Kubernetes Secrets are fine, by Mac Chaffee Links from the interview Bristol Box Life as a Solutions Engineer at Jetstack "I don't think your job is to code anymore, you just talk to people all day." Minecraft operator Improbable's etcd operator Intro to the Kubernetes 1.24 release process Kubernetes 1.24 Full release notes Dockershim is, like, proper gone cri-dockerd containerd CRI-O Beta APIs Off by Default Release artifacts are signed, with experimental support for verifying them Increased supply chain security for Kubernetes SLSA Episode 167, with Rey Lejano Episode 174, with Santiago Torres-Arias Storage Capacity tracking and Volume Expansion Storage plugin migration Azure Disk OpenStack Cinder gRPC liveness and readiness probes Avoiding collisions in IP ranges Release theme and logo 1.25 release team Go 1.18 error delays 1.24 release James Laverack on Twitter

Big week for Istio! Craig talks to Mitch Connors, Istio user experience working group lead and IstioCon program committee co-chair, about the project and the conference. Mitch talks to Craig about the news that Istio has been proposed to the CNCF. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week 40th anniversary of the ZX Spectrum Some soothing YouTube channels: Adrian's Digital Basement Jan Beta RMC - The Cave Mark Fixes Stuff Some conference talks about the Commodore 64: Rich Code for Tiny Computers DevOps for the Commodore 64 DevOps for the ZX Spectrum Manic Miner Play online News of the week Istio has applied to join the CNCF Istio mode in Tanzu Service Mesh KubeVirt moves to Incubation phase in CNCF New sandbox projects: OpenFunction, from Kubesphere Teller, from Spectral Ops Sealer, from Alibaba Chainguard Enforce Episode 47, with Kim Lewandowski EKS Blueprints Unit 42 finds serious vulnerabilities in AWS log4shell hotfix Tanzu State of Kubernetes report Go article in the Communications of the ACM Please support DevOpsDays Kyiv Links from the interview Istio What is Istio? ServiceMeshCon 2019 F5 Networks Merkle tree Merkel tree Sparse Merkle tree When was the last time you implemented a linked list? Envoy proxy istioctl wait Istio working groups Sidecar containers proposal Anthos Service Mesh Managed control and data plane IstioCon 2022 Mitch and Lin's keynote Istio has applied to join the CNCF Pull request to the CNCF TOC Prusa i3 The frankenprinter RepRap Mitch Connors on GitHub Mitch Conner from South Park Mitch Connors on Twitter

Divya Mohan is a Technical Writer with SUSE, a CNCF Ambassador, co-chair of Kubernetes SIG Docs, and a mentor to new contributors. Learn how her love of language and learning led her from production support to the core of the community. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod News of the week Volcano moves to incubation stage in CNCF Nephio Automating cloud native networks Announcement press release Improving secure software supply chain by Asra Ali and Laurent Simon, Google Open Source Security Team Docker SBOM When the moon hits your eye like a big pizza pie, that's Anchore Talos Linux 1.0 What's new in Talos 1.0 Episode 159, with Andrew Rynhard Grafana raises Series D Tanzu Application Platform v1.1 Kubernetes 1.24 delayed But seriously, don't worry about the Dockershim Ever Forward also delayed Links from the interview From zero to WIP: How I transitioned from being a sys admin working on legacy middleware to sailing the cloud native seas Hindi, Marathi, Malayalam; just 3 of the 22 scheduled languages of India IGATE HSBC Middleware Episode 175, with Bruno Andrade SIG Docs Kubernetes Community Days Bengaluru SIG Contributor Experience Kubernetes and Cloud Native Associate (KCNA) Season of Docs Summer of Code How to contribute to Kubernetes docs Arsh Sharma LitmusChaos, founded by Uma Mukkara and Karthik Satchitanand Divya joins SUSE Hayden Barnes The Friday Four Divya's writing on WebAssembly Divya Mohan on Twitter

Bruno Andrade is founder and CEO of Shipa, delivering applications and policy "as code" to Kubernetes with a SaaS model. We discuss founding companies in Canada vs the USA, abstractions for deploying apps, and whether Kubernetes will really ever disappear. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Jimmy Fallon and Jimmy Kimmel One show The other show One behind-the-scenes video Another one Ron Gilbert does not like April Fools Just kidding: Return to Monkey Island "If I ever get to make another Monkey Island, I'm going to announce it on April 1st." News of the week Grafana Mimir FAQ/Interview with the CEO Hacker News discussion Can Grafana run Doom? Open source StackRox is now available GitHub link Dagger Public launch announcement Series A finance round CUE Fermyon introduces Spin Episode 102, with Matt Butcher Google Distributed Cloud Edge IstioCon 2022 program announced PlatformCon 2022 Chainguard: It's all about that base image by John Speed Meyers and Zack Newman Docker raises $105m Series C TechCrunch coverage Garden.io raises $16m Series A VentureBeat coverage The Ever Forward container ship is still not going forward Links from the interview Shipa IBM WebSphere and WebSphere Application Server Juniper acquires HTBASE Shipa launch press release Ketch Announcement blog Why Kubernetes Will Disappear The English way Bernese mountain dog Application CRD Application API for Kubernetes Sidecar containers Bruno Andrade on Twitter

When is it safe to run software? When is it safe to drink orange juice? Are we a better judge of one or the other? Santiago Torres-Arias is an Assistant Professor at Purdue University, the team lead of the in-toto project, and a contributor to The Update Framework. He joins Craig to talk security in both physical and software supply chains. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Don't Forget The Lyrics Gettin' Jiggy Wit It Explained on Genius Will Smith on Top Gear The Oscars thing (CW: violence, cuss words that Will Smith didn't used to have to rap to sell records) He's The Greatest Dancer by Sister Sledge; written by Bernard Edwards and Nile Rodgers of Chic News of the week New Cisco Intersight Kubernetes features Red Hat OpenShift v4.10 ChaosNative acquired by Harness Azure PlayFab launches Thundernetes Episode 26, with Cyril Tovena and Mark Mandel Hacker News commentary Weave GitOps v2022-03 Qumulo for Kubernetes SpectroCloud raises $40m Pinterest: 99% to 99.9% SLO, high performance control plane Uber: Avoiding CPU throttling in a containerized environment Links from the interview in-toto The Update Framework Purdue University Elmore Family School of Electrical and Computer Engineering Purdue Boilermakers Open Source Software Senior Design Projects NYU Tandon School of Engineering Justin Cappos PolyPasswordHasher Episode 155, with Priya Wadhwa apt-secure for Debian packages A keysigning and a signed PGP key Farm to table attestation Potato tracking An example of E. coli in lettuce in-toto record Project Trebuchet: How SolarWinds is Using Open Source to Secure Their Supply Chain in the Wake of the Sunburst Hack by Trevor Rosen, Solarwinds Reflections on Trusting Trust by Ken Thompson Secure Publication of Datadog Agent Integrations with TUF and in-toto US Executive Order on Improving the Nation's Cybersecurity Readout of White House Meeting on Software Security sigstore in-toto is the second most used format for sigstore SPIFFE SLSA in-toto moves to incubation in the CNCF CFSSL Math rock Covet: "falkor" TTNG: +3 Awesomeness Repels Water Bird of the Year The kea Breaking a police car Santiago Torres-Arias on Twitter and at badhomb.re

ThreatMapper is an open source tool that hunts for vulnerabilities in your production Kubernetes environment, and ranks them based on their risk of exploit. It is built by Deepfence, who also sell a commercial product based on it called ThreatStryker. Co-founder/CEO Sandeep Lahane and head of products/community Owen Garrett join Craig to discuss how to decide what to open and what to keep closed, and just how deep his fence needs to be. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Episode 171, with Frederic Branczyk Ahmet Alp Balkan's coffee beans French press Moka pot News of the week Go 1.18 released Go now with Google Cloud Continuous fuzzing in etcd Veritas says Kubernetes is an Achilles Heel in defense against ransomware attacks ARMO's changelog for the NSA/CISA hardening guide KubeScape Cloud Native Developer Bootcamp Use the code K8SPC30 for 30% off, if it's before April 19, 2022 when you read this Plural launches with $6m seed round Launch HN post Speed boost on Docker Desktop for Mac Track the Ever Forward Links from the interview Deepfence ThreatMapper: the open source project ThreatStryker: the commercial product A failed startup story Heartbleed Buffer overflow Address Sanitizer Intel SGX Chrome sandbox Intel MPX Spectre and Meltdown NGINX (the company) eBPF Forward secrecy Deepfence's Series A announcement Shifting left Behind 2 proxies MITRE ATT&CK matrix Cyber Kill Chain ThreatMapper on GitHub What's new in ThreatMapper 1.3.0? Sandeep Lahare and Owen Garrett on Twitter

The Argo project is a set of four tools to help "get stuff done" with Kubernetes: Workflows, CD, Rollouts and Events. Jesse Suen is a creator of the Argo project and co-founder and CTO of Akuity, a company set up to provide commercial support for it. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Daylight saving time Container ship follow-up News of the week Backstage and in-toto join the CNCF Episode 136, with Lee Mills and Matt Clark Episode 155, with Priya Wadhwa Gloo Mesh 2.0 announced at SoloCon The New Stack coverage Linkerd failover operator cr8escape vulnerability in CRI-O GKE Autopilot vulnerabilities disclosed by Palo Alto Networks Updated Kubernetes hardening guide (PDF) KubeCon EU 2022 schedule Inside the numbers CNCF Observability micro-survey run:AI raises $75m Links from the interview Argo Project Argo (film) Jason and the Argonauts Applatix Pratik Wadher and Rahul Dhide Argo Workflows Applatix acquired by Intuit; Intuit acquired Applatix Marianna Tessel Alex Matyushentsev The archived Argo CI Argo CD Argo Rollouts GitOps Engine: Flux CD Argo and Flux joining forces First release of the GitOps Engine FAQ about why this didn't work out Remote vs Core Argo Events Original BlackRock announcement Argo in the CNCF Akuity The many Aaron Court Motels App of Apps ApplicationSets Join the CNCF Slack Argo Workflows and CD community meetings Jesse Suen on Twitter

The fourth horseman of the apocalypse observability, according to Frederic Branczyk, is continuous profiling. Frederic is founder and CEO of Polar Signals and creator of the Parca open source project. He and Craig talk all things Cloud Native observability. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Bad news from Australia: Shane Warne died National emergency called over flooding Strange news Photoshopped fridge magnets Cookery books News of the week Knative accepted as a CNCF incubating project Google Cloud Managed Service for Prometheus is GA k8ssandra 2.0: operator boogaloo Merbridge: eBPF for Istio by DaoCloud New Kubernetes experience in New Relic CVE-2022-0492 coverage: Unit 42 by Palo Alto Networks Jordy Zomer Links from the interview Frederic Branczyk Over-engineering coffee: Niche Zero grinder Decent Espresso Prometheus Creation at SoundCloud Observing the Kubernetes stack: SIG Instrumentation kube-state-metrics Prometheus Operator Thanos Grafana Loki Google-Wide Profiling: A Continuous Profiling Infrastructure for Data Centers Shades of blue are no joke when they make you $200m KubeCon EU 2019 Keynote: …What Does the Future Hold for Observability? - Tom Wilkie & Frederic Branczyk Polar Signals Parca Introducing Parca and getting funded Parca on GitHub Episode 163, with Thomas Dullien Flame graphs and icicle graphs PARCA: Program for Arctic Regional Climate Assessment Pyrra by Matthias Loibl Frederic Branczyk on Twitter

Six years after its creation, Kubernetes is the subject of its very own documentary film. Job platform Honeypot has released. Josiah McGarvie was Honeypot's head of video, and the lead filmmaker for Kubernetes: The Documentary. Join us for the director's commentary. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Episode 21, with Ihor Dvoretski Ihor joins the army Donate to: Come Back Alive Ukrainian National Bank The International Committee of the Red Cross Red Cross Red Crescent News of the week Podman 4.0.0 Episode 164, with Daniel Walsh and Brent Baude Signadot announces public beta Okteto raises $15m Series A Episode 125, with Ramiro Berrelleza Platform9's Enterprise Trends in Cloud Native report. Robin.io acquired by Rakuten Symphony TechCrunch coverage Superbowl ad Links from the interview Kubernetes: The Documentary Part 1 and Part 2 Honeypot What is Honeypot? Honeypot documentaries Elixir Ember GraphQL Vue.js Chad Torbin at Speakeasy Strategies Guillermo López Explaining Kubernetes to a child Bohemian Rhapsody (film) Docker's 1-year anniversary Netflix Kanye West documentary Aspect ratios Some PHP source code Tim Hockin's t-shirts A wild Kubernetes Podcast sticker Recommended on LinkedIn The Simpsons go to Australia Brisbane Documentary Company Josiah McGarvie on Twitter

Anna Belak learned about containers and security as a Gartner industry analyst. She is now the Director of Thought Leadership at Sysdig, who have just published their latest annual Cloud Native Security and Usage Report. Anna joins Craig to dicuss the report's findings. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod News of the week Chaos Mesh moves to Incubation in CNCF Episode 121, with Ed Huang Google raises payouts for Kubernetes vulnerabilities 2021 VRP roundup Sysdig teams up with Snyk, Snyk teams up with Sysdig $25m investment in KubeCost Episode 124, with Webb Brown Links from the interview Sysdig Cloud Native Security and Usage Report 2022 The last time we had a materials engineer on the show Tricking a rock into thinking Why Software is Eating The World Can analysis be worthwhile? Is the theater really dead? Industry analysts Anna Belak at Gartner Doge. Much wow Sysdig $2.5 billion valuation Beginnings Source code Episode 91, with Leonardo Di Donato Tectonic Summit, 2015 Loris Degioanni Episode 137, with Michael Gerstenhaber Sysdig's changing reports: 2017 2018 2019 2020 2021 GKE Autopilot Are we human, or are we dancer? Anna Belak on Twitter

We're back for 2022 with a look at Rancher Desktop, which recently hit 1.0. Its creator, Matt Farina, is today's guest. Matt is a Distinguished Engineer at SUSE, was a founding chair of Kubernetes SIG Apps, and was recently appointed to the CNCF TOC. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod News of the week Kubernetes: The Documentary Sysdig Cloud Native Security and Usage Report Rancher Desktop 1.0 Microshift from Red Hat Docker's second fiscal year Solo announces Bumblebee Istio 1.13 IstioCon announcement Google Cloud Deploy GA GKE Cost Optimization Insights GA Anthos Service Mesh on GKE Autopilot cluster OpenMetrics moves to Incubation phase Episode 37, with Richard Hartmann CNCF archives the OpenTracing project Kubernetes policy management paper CNCF 2021 survey results Links from the interview Matt Farina General Dynamics Land Systems Drupal Palintir (not that one) HP donates patents to support Linux HP acquires Stackato Cloud Foundry distribution CNCF Landscape Or not Helm SIG Apps Artifact Hub) What is the Artifact Hub? Rancher Labs acquired by SUSE Episode 57, with Darren Shepherd Open source from SUSE/Rancher Rio Longhorn Epinio Kubewarden Rancher Desktop Announcement 1.0 release Slashes kube-solo nerdctl k3s and k3d Matt Farina joins the CNCF TOC Cloud Native Podcast Episode 102, with Matt Butcher Matt Farina on Twitter

Learn all about what's new in today's Kubernetes 1.23 with its release team lead, Rey Lejano. Rey is a Field Engineer at SUSE/Rancher Labs, and a contributor to the Docs, Release and Security SIGs. Long time listener Adam also drops by to ask Craig what's been happening with the hiatus. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Ted Lasso Filming locations Knative applies to become a CNCF project Links from the interview African clawed frog Cross-fertilization and structural comparison of egg extracellular matrix glycoproteins from Xenopus laevis and Xenopus tropicalis ITIL RX-M 1.18 release team 1.23 release team Kubernetes 1.23: The Next Frontier Odd numbered Star Trek movies Star Trek V: The Final Frontier SIG Release Charter Enhancements: Dual stack IPv4/IPv6 - Stable Pod security admission - Beta TTL After Finished Controller - Stable Auto delete PVCs created by StatefulSets - Alpha Skip Volume Ownership Change - Stable Generic Ephemeral Inline Volumes CronJobs Deprecation of FlexVolumes Deprecation of klog flags HorizontalPodAutoscaler v2 API - Stable Ephemeral containers - Beta kubectl events improvements - Alpha Kubelet CRI support - Beta 1.22 interview with Savitha Raghunathan 1.24 lead: James Laverack Kubernetes Contributor Celebration Rey Lejano on Twitter

We celebrate the launch of Knative 1.0 with Ville Aikas, who has been with the project since the beginning. He was also with the Kubernetes team at the beginning, and thus we cannot resist a Pete Best comparison. We also celebrate Jimmy's last show as our guest host with a rapid-fire Kubernetes quiz. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the week Jimmy graduates! CNCF Landscape The menu at the Cheesecake Factory In-n-Out Secret Menu Links from the interview Important programmers from Finland Paddington Bear University of Washington Google Voice Google Cloud Storage Read-after-write consistency The Fifth Beatle Knative Serving Eventing Build, which became Tekton Pipelines Did we market Knative wrong? by Ahmet Alp Balkan Duck typing Rubber duck debugging Extending Knative for Fun and Profit, by Matt Moore & Ville Aikas Subresources Proposal for custom subresources for CRDs Google Cloud Run IBM Cloud Code Engine Knative steering committee and technical oversight committee Great artists steal Chainguard Episode 152, guest hosted by Dan Lorenc Episode 47, with Kim Lewandowski SLSA Sigstore Ville to present at Knative community meetup on November 17 Craig presented Knative at the Kubernetes Colorado meetup in July 2018 Seattle Kraken Ville Aikas on Twitter

Jasmine James is an Engineering Manager within the Engineering Effectiveness organization at Twitter, focused on their internal developer experience. She is also the latest co-chair of KubeCon + CloudNativeCon, starting with the North America event last week. Jasmine joins us to talk about being in the same room as other people - up to 3,000 of them - for the first time in a long while. The cover art for this show is courtesy of the CNCF and licensed under CC-BY. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: [email protected] twitter: @kubernetespod Chatter of the last wee while KubeCon NA 2021 Google Cloud Next '21 SREcon21 William Shatner's words after touching the edge of the final frontier Adele to release a new album Common People Shatner's new album "Bill" News of the recent past Google Cloud Next: Google Distributed Cloud Edge and Hosted BigQuery Omni is GA Anthos for VMs Managed Service for Prometheus VMworld VMware Tanzu Community Edition Cartographer for supply chain choreography KubeCon + CloudNativeCon CNCF announces record number of new silver members KCNA entry-level certification Cilium joins the CNCF Triggermesh becomes open source Codefresh replatforms on upstream Argo Cloud Native security microsurvey results Introducing Chainguard Episode 152, guest hosted by Dan Lorenc Episode 47, with Kim Lewandowski Kubernetes documentary trailer Links from the interview Atlanta AT&T Delta Air Lines Avoiding the weeds in the Cloud Native Landscape at KubeCon NA 2018 Q&A with Jasmine James, newest KubeCon co-chair The selection process for KubeCon NA 2021 Upcoming CNCF events Co-co-chairs: Episode 117, with Constance Caramanolis Episode 130, with Stephen Augustus Keynotes of note: Three Developer Experience keynotes from Constance, Jasmine, and Robert Duffy A Vulnerable Tale about Burnout by Julia Simon The Road to Multicluster by Kaslin Fields Episode 62, with Ricardo Rocha, Lukas Heinrch and Clemens Lange Interaction wristbands Horseback riding and fishing Jasmine James on Twitter