1_r/devopsish

1_r/devopsish

54597 bookmarks
Custom sorting
Resigning as Asahi Linux project lead
Resigning as Asahi Linux project lead
Back in the late 2000s, I was a major contributor to the Wii homebrew scene. At the time, I worked on software (people call them “jailbreaks” these days) to allow users to run their own unofficial apps on the Nintendo Wii. I was passionate about my work and the team I was part of (Team Twiizers, later fail0verflow). Despite that, I ended up burning out, primarily due to the very large fraction of entitled users.
·marcan.st·
Resigning as Asahi Linux project lead
You can finally merge Apple Accounts
You can finally merge Apple Accounts
I didn’t want this one to pass unremarked upon, especially given that Stephen Hackett recently discussed this issue on Connected: Apple has finally unveiled a tool to merge Apple Accounts: Yo…
·sixcolors.com·
You can finally merge Apple Accounts
Last Week in Kubernetes Development - Week Ending February 09 2025
Last Week in Kubernetes Development - Week Ending February 09 2025

Week Ending February 09, 2025

https://lwkd.info/2025/20250212

Developer News

SIG-Etcd is recruiting for another Mentorship Cohort. If you’ve been interested in working on Etcd, or leveling up your skills to become an approver, please apply to be a mentee.

SIG Leads, quick reminder to check your old alpha/beta features to see if they can progress in 1.33, or should maybe be deprecated.

Arty folks, want to design the contributor tshirt for London? Submit your designs by February 18th.

Release Schedule

Next Deadline: Enhancements Freeze, February 13

Enhancements freeze is right around the corner, scheduled for 02:00 UTC Friday 14th February 2025 / 18:00 PST Thursday 13th February 2025. If your KEPs have been opted-in for the release make sure that you’ve fulfilled all the requirements in order to make the cut for enhancements freeze. If you’re expecting the need for an exception, you can talk with your SIG leads and apply for an early exception request.

1.33 alpha 1 is now available.

February patch releases are delayed 1 week to incorporate a golang update.

Featured PRs

129731: SidecarContainers to GA

Sidecar containers feature is finally promoted to GA in v1.33. The SidecarContainers feature gate has been locked to default value and will be removed in v1.36. The original KEP for sidecar containers was first introduced in v1.28. The KEP proposed built-in support for sidecar containers in Kubernetes with the sidecar containers running as restartable initContainers.

128367 FG:InPlacePodVerticalScaling Implement resize for sidecar containers

This PR implements resize for sidecar contianers, with sidecar containers now promoted to GA. Resize of sidecar containers now works the same as resize of regular containers. This PR adds the capability to resize sidecar containers, which are essentially restartable init containers, when in-place pod resizing is enabled. Resize of non-restartable init containers is still not allowed.

Other Merges

Fix for memory leak in kube-proxy occurring in clusters with high volume of UDP workflows

kube-apiserver featuregate ServiceAccountNodeAudienceRestriction to be enabled by default in v1.33

Fix for regression with ServiceAccountNodeAudienceRestriction for azureFile volumes errors

Scheduler queuesort plugins integration tests added

Fix for DRA allocation All mode when there are no devices available for allocation

statusz endpoint added for kube-controller-manager

statusz endpoint added for kube-proxy

Promotions

ControlPlaneKubeletLocalMode to beta

WaitForAllControlPlaneComponents to beta

Deprecated

WatchFromStorageWithoutResourceVersion deprecated

SeparateCacheWatchRPC deprecated

Version Updates

Update publishing-bot rules to use go1.22.10 for active release branches

Kubernetes is now built with Go 1.23.5

via Last Week in Kubernetes Development https://lwkd.info/

February 12, 2025 at 02:00PM

·lwkd.info·
Last Week in Kubernetes Development - Week Ending February 09 2025
DevOps Toolkit - Ep11 - Ask Me Anything About DevOps Cloud Kubernetes Platform Engineering... w/Scott Rosenberg - https://www.youtube.com/watch?v=3wekCMdzHmA
DevOps Toolkit - Ep11 - Ask Me Anything About DevOps Cloud Kubernetes Platform Engineering... w/Scott Rosenberg - https://www.youtube.com/watch?v=3wekCMdzHmA

Ep11 - Ask Me Anything About DevOps, Cloud, Kubernetes, Platform Engineering,... w/Scott Rosenberg

There are no restrictions in this AMA session. You can ask anything about DevOps, Cloud, Kubernetes, Platform Engineering, containers, or anything else. We'll have a special guest Scott Rosenberg to help us out.

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

via YouTube https://www.youtube.com/watch?v=3wekCMdzHmA

·youtube.com·
DevOps Toolkit - Ep11 - Ask Me Anything About DevOps Cloud Kubernetes Platform Engineering... w/Scott Rosenberg - https://www.youtube.com/watch?v=3wekCMdzHmA
Stop Logging the Request Body!
Stop Logging the Request Body!
With more and more people adopting OpenTelemetry and specifically using the tracing signal, I’ve seen an uptick in people wanting to add the entire request and response body as an attribute. This isn’t ideal, as it wasn’t when people were logging the body as text logs. In this blog post, I’ll explain why this is a bad idea, what are the pitfalls, and more importantly, what you should do instead.
·honeycomb.io·
Stop Logging the Request Body!
DevOps Toolkit - From Zero to Fully Operational Developer Platform in 5 Steps! - https://www.youtube.com/watch?v=fZ2DjdqT1e0
DevOps Toolkit - From Zero to Fully Operational Developer Platform in 5 Steps! - https://www.youtube.com/watch?v=fZ2DjdqT1e0

From Zero to Fully Operational Developer Platform in 5 Steps!

Learn how to build a fully operational Internal Developer Platform (IDP) in just 5 steps! Discover the principles, components, and tools needed to create your own developer platform. Follow along as we cover APIs, state management, one-shot actions (workflows), RBAC & policies, and optional user interfaces like custom CLIs and GitOps. By the end, you'll have a comprehensive understanding of how to assemble an IDP that fits your needs using open-source solutions. Watch now to master developer platforms and streamline your application deployment and observation processes!

InternalDeveloperPlatform #DevOps #opensource

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ Sponsor: KodeKloud 🔗 Free courses (Feb 10 to 17) - https://kode.wiki/4hNCku4 🔗 KodeKloud -https://kodekloud.com ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ ➡ Transcript and commands: https://devopstoolkit.live/internal-developer-platforms/from-zero-to-fully-operational-developer-platform-in-5-steps 🎬 Crossplane (tutorial): https://youtube.com/playlist?list=PLyicRj904Z99i8U5JaNW5X3AyBvfQz-16 🎬 Cloud-Native Apps With Open Application Model (OAM) And KubeVela: https://youtu.be/2CBu6sOTtwk 🎬 Kubernetes-Native Policy Management With Kyverno: https://youtu.be/DREjzfTzNpA 🎬 How to apply policies in Kubernetes using Open Policy Agent (OPA) and Gatekeeper: https://youtu.be/14lGc7xMAe4 🎬 Govern Kubernetes with Kubewarden and WASM Admission Controllers: https://youtu.be/KbKQu3AqhBY 🎬 Is This the End of Crossplane? Compose Kubernetes Resources with kro: https://youtu.be/8zQtpcxmdhs 🎬 What Is... GitOps Tools?: https://youtube.com/shorts/z9nUgMOwaDg 🎬 Argo CD - Applying GitOps Principles To Manage A Production Environment In Kubernetes: https://youtu.be/vpWQeoaiRM4 🎬 Flux CD v2 With GitOps Toolkit - Kubernetes Deployment And Sync Mechanism: https://youtu.be/R6OeIgb7lUI 🎬 Rancher Fleet: GitOps Across A Large Number Of Kubernetes Clusters: https://youtu.be/rIH_2CUXmwM 🎬 Mastering Developer Portals: Discover & Integrate API Schemas with Port: https://youtu.be/PV1sBiC85Yc 🎬 From UX to API: Mastering Platform Validations with Kubernetes Validating Admission Policies: https://youtu.be/8jtYN-qvSqA 🎬 Full Application Setup in Internal Developer Platform (IDP) with Crossplane: https://youtu.be/WpgiVlODt4I 🎬 How to Create Custom CLIs for Internal Developer Platforms with Nushell: https://youtu.be/TgQZz2kGysk 🎬 Getting Started with Backstage: From Zero to Operational Dev Portal: https://youtu.be/A-3Ai--Z-Gs

▬▬▬▬▬▬ 💰 Sponsorships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please visit https://devopstoolkit.live/sponsor for more information. Alternatively, feel free to contact me over Twitter or LinkedIn (see below).

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

▬▬▬▬▬▬ ⏱ Timecodes ⏱ ▬▬▬▬▬▬ 00:00 Full Internal Developer Platform 03:16 KodeKloud (sponsor) 04:39 Components of a Platform 12:17 Step 1: APIs 16:17 Step 2: State management 21:54 Step 3: One-Shot Actions (Workflows) 25:56 Step 4: RBAC & Policies 28:57 Step 5: Custom User Interface for Operations (Optional) 30:04 Step 5-1: CLI UI 31:16 Step 5-2: GitOps UI 32:53 Step 5-3: Web UI 35:26 The Question?

via YouTube https://www.youtube.com/watch?v=fZ2DjdqT1e0

·youtube.com·
DevOps Toolkit - From Zero to Fully Operational Developer Platform in 5 Steps! - https://www.youtube.com/watch?v=fZ2DjdqT1e0
Tech companies brace after UK demands back door access to Apple cloud | Computer Weekly
Tech companies brace after UK demands back door access to Apple cloud | Computer Weekly
Tech companies brace after UK demands back door access to Apple cloud Tech companies brace for more attacks on encryption The UK has served a notice on Apple demanding back door access to encrypted data stored by users anywhere in the world on Apple’s cloud service. Technology companies are bracing themselves for more attacks on encryption after the UK government issued an order requiring Apple to create a back door to allow security officials access to content uploaded on the cloud by any Apple phone or computer user world-wide. The government has used powers under UK surveillance laws to issue a secret order requiring Apple to provide the UK with the ability to access all encrypted material stored by any Apple users on its cloud servers anywhere in the world, the Washington post revealed.
·computerweekly.com·
Tech companies brace after UK demands back door access to Apple cloud | Computer Weekly
DevOps Toolkit - One-Shot Actions (CI) - Feat. GitHub Actions Argo Workflows Tekton (You Choose! Ch. 05 Ep. 03) - https://www.youtube.com/watch?v=6gQjnvzS5Bc
DevOps Toolkit - One-Shot Actions (CI) - Feat. GitHub Actions Argo Workflows Tekton (You Choose! Ch. 05 Ep. 03) - https://www.youtube.com/watch?v=6gQjnvzS5Bc

One-Shot Actions (CI) - Feat. GitHub Actions, Argo Workflows, Tekton (You Choose!, Ch. 05, Ep. 03)

One-Shot Actions - Choose Your Own Adventure: The Dignified Pursuit of a Developer Platform

In this episode, we'll go through one-shot actions tools typically used to execute tasks like workflows, CI, etc. The tools we'll explore and compare are GitHub Actions, Argo Workflows, and Tekton.

Vote for your choice of a tool for signing artifacts at https://cloud-native.slack.com/archives/C05M2NFNVRN. If you have not already joined CNCF Slack, you can do so from https://slack.cncf.io.

This and all other episodes are available at https://www.youtube.com/playlist?list=PLyicRj904Z9-FzCPvGpVHgRQVYJpVmx3Z.

More information about the "Choose Your Own Adventure" project including the source code and links to all the videos can be found at https://github.com/vfarcic/cncf-demo.

٩( ᐛ )و Whitney's YouTube Channel → https://www.youtube.com/@wiggitywhitney

githubactions #argoworkflows #tekton

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ 🔗 CNCF Slack invite (if you’re not already there): https://communityinviter.com/apps/cloud-native/cncf 🔗 Link to #you-choose channel in CNCF Slack: https://bit.ly/3NV7nHW 🔗 Policies: https://github.com/vfarcic/cncf-demo/tree/main/manuscript/workflows/README.md

via YouTube https://www.youtube.com/watch?v=6gQjnvzS5Bc

·youtube.com·
DevOps Toolkit - One-Shot Actions (CI) - Feat. GitHub Actions Argo Workflows Tekton (You Choose! Ch. 05 Ep. 03) - https://www.youtube.com/watch?v=6gQjnvzS5Bc
The place to learn about Open Source
The place to learn about Open Source
A curated resource for books to help you learn about and be successful with Free and Open Source Software.
·fossbooks.com·
The place to learn about Open Source
Last Week in Kubernetes Development - Week Ending February 02 2025
Last Week in Kubernetes Development - Week Ending February 02 2025

Week Ending February 02, 2025

https://lwkd.info/2025/20250205

Developer News

The London Maintainer Summit schedule is up, and registration is open. There will also be an unconference at the event.

Release Schedule

Next Deadline: Production Readiness Freeze, February 6

Production Readiness Reviews will start this week, and the Enhancements Freeze is next week, so make sure your 1.33 enhancements are opted in.

Cherry-pick deadline for the February patch release is this Friday.

Featured PRs

129816: Improve SA max token expiry with external signer logic, and plumb extended expiry duration

This PR refines the token expiration handling in the kube-apiserver. It allows you to set the --service-account-max-token-expiration flag when using an external signer by replacing the old IsExternalSigner check with a dedicated extended signing duration. This change streamlines the configuration, making token management more straightforward and reliable.

KEP of the Week

4815 DRA Partitionable Devices

Support for partitionable devices, such as GPUs, is the next step in the grand implementation plan for dynamic resource allocation (DRA). Abhishek Malvankar has published an excellent primer on this KEP. The goal of this feature is to allow runtime partitioning of GPU resources like microprocessors, graphical engines, and memory between different pods and containers so that workloads can share them as required. The DRA team would like your comments on the proposed API, to make sure that they are covering the capabilities of a variety of popular hardware.

Other Merges

Score integration tests added for TaintToleration plugin

Fix in DRA plugin to return directly when there is no resourceclaim

New lint rule added to prevent the deprecated usage of unversioned featuregate

Added context for Wait methods in integration test utils

Improvements to goroutines metric calls in parallelizer.Until

Common code for statusz and flagz moved under httputil package

Added static pod upgrade test with hostNetwork

Version Updates

cel-go to v0.23.2

via Last Week in Kubernetes Development https://lwkd.info/

February 05, 2025 at 05:00PM

·lwkd.info·
Last Week in Kubernetes Development - Week Ending February 02 2025