Bret is joined by Dan Garfield of CodeFresh to talk about growth of GitOps as a standard, growth of Argo, and more. Dan is the Co-founder and Chief Open Source Officer of Codefresh, a CI/CD platform powered by GitOps and Argo. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert, he helps companies and individuals adopt Argo with GitOps and streamline their CI/CD. We take some great questio...
Sep 22, 2023•1 hr 2 min•Ep 141•Transcript available on Metacast In this episode, Bret and Nirmal talk with Brian Douglas of OpenSauced. Brian Douglas, of GitHub fame, has founded OpenSauced, a cool web app and community of open source developers finding their next contribution and maybe their next job. Brian has so many stories of working with open source projects and having conversations with leading open source contributors, while previously being a lead developer advocate at GitHub. So we definitely spend time talking through some of those stories and lea...
Sep 08, 2023•53 min•Ep 140•Transcript available on Metacast Bret and Nirmal welcome Idit Levine, Founder/CEO Solo.io. Idit focuses on Service Mesh, API-GW and Multi-Cloud networking, and security. Idit has been involved in the Containers/DevOps community for 10+ years, building products from Docker to Envoy to Kubernetes, and now Istio and Cilium. We talk about Istio, Ambient Mesh, Envoy, Zero-Trust Security, Cilium, eBPF, Multi-Cloud and more. This is not the first time we've talked about Solo or Service Mesh. Ambient Mesh is Solo's new product that sim...
Aug 25, 2023•1 hr 3 min•Ep 139•Transcript available on Metacast Bret and Matt welcome special guest Brendan Burns, CVP Azure Cloud Native & Resource Management, and also a founding member of the Kubernetes project. Because Brendan is one of the three original co-founders of the Kubernetes project back in 2013 at Google, he's a little bit internet famous in open source and Cloud Native. So I was a little nervous going into this because I had so many questions. We took some live questions as we always do from YouTube live, and I thought it was a really gre...
Aug 11, 2023•1 hr 3 min•Ep 138•Transcript available on Metacast Bret and Matt welcome Michael Cade, the field CTO at Kasten by Veeam. If you've been around servers for a while, you probably have heard of Veeam. It made its debut back in the late 2000's when virtual machines and implementations of VMs were big. I first found out about them back in those days, because it was a great free product for small virtual machine environments and data centers. They've made tons of additional backup and recovery products over those years, and now they have Kasten K10, w...
Jul 28, 2023•1 hr 9 min•Ep 137•Transcript available on Metacast Bret and Matt welcome Jake Warner back to the show to talk about LowOps. What does LowOps mean? What can Cycle offer us as an alternative to Swarm and Kubernetes? Jake Warner is the CEO and founder of Cycle.io. And I had him on the show a few years ago when I first heard about Cycle and I wanted to get an update on their platform offering. On this show we generally talk about Docker and Kubernetes but I'm also interested in any container tooling that can help us deploy and manage container based...
Jul 14, 2023•50 min•Ep 136•Transcript available on Metacast Bret and Matt are joined by Corey Quinn to talk about AWS and containers. Corey Quinn is the Chief Cloud Economist at the Duckbill Group. You may have seen or heard some of his in-depth AWS content, including his Last Week in AWS newsletter and blog, Corey's podcast Screaming in the Cloud and the AWS Morning Brief, or his highly produced YouTube videos on the Last Week in AWS channel. Corey runs the Duckbill Group, a company of people focused on helping clients understand and manage their cloud ...
Jun 30, 2023•1 hr 5 min•Ep 135•Transcript available on Metacast Bret and Matt are joined by Brent Baude and Dan Walsh from Red Hat to talk about the latest with Podman, Quadlet, Podman Desktop and Podman machine, and how it all works with Kubernetes. Dan Walsh , a Senior Distinguished Engineer at Red Hat, has been working with containers since the beginning. He's a contributor to Docker, Project Atomic, SELinux, and a lot more. He literally wrote the book on Podman . Brent Baude , is a Senior Principal Software Engineer at Red Hat and an architect and a prim...
Jun 16, 2023•58 min•Ep 134•Transcript available on Metacast Bret and his co-host, Matt, are joined by Jason Dellaluce and Luca Guerra from Sysdig to talk about Falco, a tool I recommend for production clusters and knowing about any bad behavior on your servers. Falco is a security tool I've mentioned multiple times on this show, because I mostly think that a low level security focused logging product is something that every production server needs. The ability to log unexpected events and behaviors on your Linux host is powerful and necessary to be able ...
Jun 02, 2023•1 hr 6 min•Ep 133•Transcript available on Metacast Bret is joined by Lukas Gentele and Rich Burroughs from Loft Labs to look at a new project called DevPod, that supports dev containers and VMs. It works with local Docker instances and AWS, GCP, Azure, and several other cloud providers. The project is compatible with Microsoft's DevContainer standard, which means it works with the VC Code standalone app and VS Code in the browser. Lukas and Rich were on this show last year, showing off vcluster, which allows you to run a full Kubernetes cluster ...
May 26, 2023•1 hr 2 min•Ep 132•Transcript available on Metacast Bret and Matt are joined by two engineers in Docker's leadership - Chief Technology Officer Justin Cormack and Senior Manager of Developer Relations Michael Irwin, to talk about recent Docker Hub changes, as well as their latest product releases. We touch on Docker's latest updates and announcements, focusing on the early releases of Docker Scout, Docker plus WebAssembly, and the Telepresence extension for Docker Desktop. We also look at Docker's version 23 release, its first major update in thr...
May 19, 2023•56 min•Ep 131•Transcript available on Metacast Bret and Matt are joined by Chad Crowell of KubeSkills to walk through how you can contribute to Kubernetes open source. Chad started the kubeskills.com community and podcast to focus on learning Kubernetes by doing and in this episode, he's taking us through a detailed guide on how to get involved in the Kubernetes community. Although Kubernetes and other CNCF projects may seem big and complex with tons of activity, Chad helps us understand how the maturity of the projects and the community mak...
May 05, 2023•53 min•Ep 130•Transcript available on Metacast Bret is joined by fellow Docker Captain Nuno do Carmo to talk about desktop container solutions and the best Docker setup for Windows 11. Nuno's a Docker Captain, Civo Ambassador, Microsoft MVP, and a big fan of Windows and Cloud Native. I've had him on the show before, because the more you use the Windows Subsystem for Linux and Docker Desktop, the more you'll want to use WSL. Nuno helps answer many questions such as where are the Linux files stored, managing the CPU and memory resources, backi...
Apr 14, 2023•1 hr 2 min•Ep 129•Transcript available on Metacast Bret is joined by Project Calico's Tomas Hruby from Tigera to dig into Calico CNI features for Kubernetes and beyond. Calico can be used in a lot of places, including Linux, Windows, containers, bare metal, eBPF or iptables. Many of us learned about it as a CNI option for Kubernetes network and networking policy. Streamed live on YouTube on February 9, 2023. Unedited live recording of this show on YouTube (Ep. #202). Includes demos. Topics Project Calico Tigera Website Project Calico on Tigera's...
Mar 31, 2023•39 min•Ep 128•Transcript available on Metacast Bret is joined by Kyle Galbraith and Jacob Gillespie, co-founders of Depot, to discuss their new solution to slow Docker builds. If you've never dug into some of the details of Dockers BuildKit, that's the engine behind your Docker build command, then this episode is for you. I'm fairly confident that everyone who uses Docker will eventually come upon the problems that Kyle and Jacob were trying to solve with Depot. Their focus is on speeding up your Docker builds by doing them remotely, in a tr...
Mar 17, 2023•41 min•Ep 126•Transcript available on Metacast Bret is joined by Natan Yellin, the co-founder of Robusta.dev to talk Kubernetes and Prometheus monitoring, alerting, and maybe some CPU limit ranting. Robusta tries to fill the gap left by Kubernetes' own AlertManager which has a very specific and not so helpful way of describing events in your cluster. This makes it hard to diagnose the cause of the event and you're left with Google, StackOverflow and an awful lot of head-scratching. Robusta acts as a proxy between AlertManager and your notifi...
Mar 04, 2023•50 min•Ep 125•Transcript available on Metacast Bret is joined by two pros from the NGINX team, Robert Haynes and Brian Ehlert to break down the various use cases of NGINX on Kubernetes, and help you decide when and where you'll be using it. There's a lot going on around NGINX and I wanted to focus this conversation around NGINX on Kubernetes, and specifically the two ways you can run it for cluster ingress. We also get into some of the advanced scenarios of using NGINX, like caching and web application firewalls (WAF). Many of us are using N...
Feb 17, 2023•54 min•Ep 124•Transcript available on Metacast Bret is joined by Matt Williams of Infra to show off their open source project Infra, which provides easy, centralized RBAC and auth to Kubernetes and more. Infra is a new company taking on simplifying centralized infrastructure, user authentication and permissions. Their open source tool by the same name is quite easy to start with. In this episode, Matt does a great job of explaining the pain points of Kubernetes user management, certificate distribution and revocation, and more pain points th...
Feb 03, 2023•46 min•Ep 123•Transcript available on Metacast Bret is joined by Anas Urlichs of Aqua Security to talk container and Kubernetes security tools like trivy, kube-bench, tracee, and kube-hunter. I've been using trivy for over four years to scan for known vulnerabilities in my own container images and my clients. We also look at tracee, a new tool that is part of a new generation of tools that use the Linux kernel eBPF feature to investigate what's happening in real time on your servers. Anas is great as an explainer of Kubernetes and all cloud ...
Jan 20, 2023•40 min•Ep 122•Transcript available on Metacast Bret is joined by two Chainguard co-founders, CEO Dan Lorenc and Head of Product, Kim Lewandowski, to break down the ins and outs of supply chain security and talk about Chainguard's approach to securing it. We dive into tools, including their new Wolfi Linux distro. We first talk about what that even is, because it's a buzzword right now, and not everyone's on the same page on what securing your supply chain even means in the world of software. Then we jump into base images for containers, and ...
Jan 06, 2023•50 min•Ep 121•Transcript available on Metacast Bret is joined by Nirmal Mehta of AWS and engineering consultant Laura Tacho, for the annual Best of DevOps. We've started this trend of going through the year's best (and worst) of DevOps every December, everyone brings their topics, we mix them all up and try to get through all of it. This year, we came pretty close. We cover many topics in this year's episode, things like desktop GUIs for containers, the return of real-life conferences, Docker reaching a significant milestone, AI, ML, data pl...
Dec 23, 2022•47 min•Ep 120•Transcript available on Metacast Bret is joined by Michael Irwin, Sr. Manager for DevRel at Docker, to review and demo our top 2022 new features and announcements from Docker Inc. We run through the very long list in this episode and sadly, had to skip over the smaller, nuance features or subtle changes and focused on the bigger things - a major one being Docker extensions - as well as Docker Hub support for OCI artifacts, like the Helm charts, volume, WASM, Hardened Docker Desktop, tilt.dev and much more. Streamed live on YouT...
Dec 16, 2022•1 hr 19 min•Ep 119•Transcript available on Metacast Bret is joined by Brian Christner, a Docker Captain and Chief, Online Gaming for Grand Casino Baden (jackpots.ch), who returns to the show to discuss his top recommended skills for improving your DevOps expertise. Both Bret and Brian have been consultants on and off throughout their careers and also in positions where they needed to hire other engineers - often other DevOps engineers. They share their perspectives on the different types of DevOps roles and the various jobs they need to fill. In ...
Dec 09, 2022•1 hr 15 min•Ep 118•Transcript available on Metacast Bret is joined by Rosemary Wang from HashiCorp to show off Vault for Kubernetes, an an open source secrets provider. Rosemary is a return guest and does her usual fantastic job at explaining the complex topics around storing secrets, who needs Vault and why, running Vault on Kubernetes, the Vault storage backend and so much more. Streamed live on YouTube on September 29, 2022. Includes demos. Unedited live recording of this show on YouTube (Ep #186) Topics Vault website HashiCorp Cloud Raft stor...
Nov 25, 2022•55 min•Ep 117•Transcript available on Metacast Bret is joined by Lee Calcote and Nic Jackson, co-authors of the Service Mesh Patterns book, to discuss service mesh for Docker Desktop and Compose apps with the new Meshery extension for Docker desktop. They talk about what service mesh is and go into the new Measure extension for Docker Desktop, which is a CNCF sandbox project. One of its bigger features is to help you try out different service meshes and test them with only a few clicks. They also cover other features of their tools, such as ...
Nov 11, 2022•50 min•Ep 116•Transcript available on Metacast Bret is joined by Liz Rice, Chief Open Source Officer at Isovalent, the makers of Cilium, to discuss Cilium and eBPF. Liz Rice is back to give us more insight into eBPF and the Cilium project. Isovalent is the company that created and manages the Cilium Project, which does an increasing number of things for Kubernetes, including networking, CNI support, security, advanced networking stuff, and observability, as well as other things like load balancing. Liz is one of my go-to experts on how low-l...
Oct 28, 2022•55 min•Ep 115•Transcript available on Metacast Bret is joined by Shauli Rozen, CEO and Co-Founder of ARMO, creators of Kubescape. Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer, and image vulnerability scanning. I'm a fan of tools like this and specifically of Kubescape, which I use and recommend to my clients. The scanner can scan your YAML manifests of your Kubernetes resources. It can scan your live Kubernetes clusters. And it can scan the...
Oct 21, 2022•45 min•Ep 114•Transcript available on Metacast Bret is joined by Martin Wimpress and Pieter van Noordennen from Slim.ai to discuss some ways to slim down your Docker images and reduce the attack surface of your containers in the process. Many companies and projects have tried to do similar things before - Slim Images, Alpine Images, Distro List, Build Packs, and even Docker tried a few years back, to create intelligence and guidance around migrating legacy apps into slim production quality images. Those efforts were scrapped in 2019. The dua...
Oct 14, 2022•48 min•Ep 113•Transcript available on Metacast Bret is joined by Dmitriy Kalinin and John Ryan, software engineers at VMWare, to show off the many Carvel project tools. Carvel provides a set of reliable, single-purpose, composable tools that aid in your application building, configuration, and deployment to Kubernetes. The Carvel project includes tools for templating, image building and tracking, secrets management, app deploying and more. The tool list includes ytt, kapp, kapp-controller, kbld, imgpkg, vendir, and kwt. Streamed live on YouT...
Oct 07, 2022•1 hr•Ep 112•Transcript available on Metacast Bret goes through his top recommendations for securing container images, Docker containers and Kubernetes pods. This is a tip-packed show where Bret lists much of what's documented in his courses, starting with the first steps you should take, and the bare security necessities that everyone should be doing. Then he covers more advanced security activities you should consider once the basics are covered. Streamed live on YouTube on July 7, 2022. Unedited live recording of this show on YouTube (Ep...
Sep 23, 2022•53 min•Ep 111•Transcript available on Metacast 
