Episode description
Adam and Craig end the year by talking to Jordan Liggitt, the member of the Kubernetes Product Security Team who fixed the recent critical security vulnerability in the Kubernetes API server. We also take a look at the news from KubeCon.
This is our last episode for 2018. Thank you for your support this year, and we’ll be back on the 8th of January!
Do you have something cool to share? Some questions? Let us know:
- web: kubernetespodcast.com
- mail: kubernetespodcast@google.com
- twitter: @kubernetespod
- etcd donated to the CNCF
- Chubby paper
- Raft paper
- Blog post on the relationship between Kubernetes and etcd by Gyuho Lee and Joe Betz
- Istio:
- Knative:
- Oracle Cloud Native Framework
- Microsoft:
- Digital Ocean Kubernetes now open to everyone
- Linode Kubernetes CLI
- VMware closes its acquisition of Heptio
- Quickfire Kubernetes security news
- NeuVector announced containerd and CRI-O runtime support in their container firewall
- Aqua’s Container Security Platform is now certified to cover the Kubernetes CIS benchmarks
- Lacework announced their configuration scanning platform covers Kubernetes
- Sysdig released Sysdig Secure 2.2, which adds Kubernetes audit events, and the ability to block deployments using Kubernetes admission controllers
- Twistlock released 18.11, which “introduces security visualization for Kubernetes, and compliance and security configuration checks for Istio, including new alerting integrations with PagerDuty, and cloud services
- Grafana Loki
- Maestro – A declarative, no-code approach to Kubernetes Day 2 Operators
- rbacsync
- PlanetScale announces funding
- Jordan’s suggested KubeCon talks to watch:
- OpenShift before Kubernetes in 2014
- Kubernetes Product Security Team
- CVE-2018-1002105: proxy request handling in kube-apiserver can leave vulnerable TCP connections
- Answering questions on Stack Overflow
- Jordan Liggitt on Twitter, GitHub, Slack or Stack Overflow