This is $30 cheaper than my VPN alone. Anyone try it yet? | Meet DuckDuckGo PrivacyPro

Three powerful new protections bundled into one subscription.

·spreadprivacy.com·Apr 11, 2024

This is $30 cheaper than my VPN alone. Anyone try it yet? | Meet DuckDuckGo PrivacyPro

Nvidia and Georgia Tech announce first AI supercomputer for students

Nvidia on Wednesday announced the first AI supercomputer designed for student use, in collaboration with the Georgia Institute of Technology.

·cnbc.com·Apr 11, 2024

Nvidia and Georgia Tech announce first AI supercomputer for students

AWS and InfluxData partner to offer managed time series database Timestream for InfluxDB

April 11, 2024 at 09:26AM

via Instapaper

·venturebeat.com·Apr 11, 2024

AWS and InfluxData partner to offer managed time series database Timestream for InfluxDB

postmodern/chruby: Changes the current Ruby

April 11, 2024 at 08:32AM

via Instapaper

·github.com·Apr 11, 2024

postmodern/chruby: Changes the current Ruby

Week Ending April 07 2024

Week Ending April 07, 2024

https://lwkd.info/2024/20240410

Developer News

The videos of the Kubernetes Contributor Summit EU are now available.

Arda Guclu has been nominated as a new chair for SIG CLI.

A new working group, WG Device Management, has been formed to address the need for improved support for accelerators in Kubernetes.

Release Schedule

Next Deadline: Release Day, April 17th

We’re closing in on the release of Kubernetes v1.30, which is scheduled for next Wednesday.

Featured PRs

k/website #45496: Add mechanism to retrieve API reference page link based on metadata

This PR to the Kubernetes website adds a new partial layout named api-reference-links.html to fetch the link of the API reference page based on the metadata present in the front matter of the file and adds the API reference link in the page links section. If a concept page has links to multiple API references, all of them will be listed in the links section.

KEP of the Week

KEP 4008: CRD Validation Ratcheting

This KEP proposes to allow custom resources with failing validations to pass if a patch does not alter any of the invalid fields. Currently, validation of unchanged fields stands as a barrier for both CRD authors and Kubernetes developers. This KEP proposes the CRDValidationRatcheting feature flag, which when enabled allows updates to custom resources that fail validation to succeed, if the validation errors when on unchanged keypaths. This makes it easier to change CRD validations without breaking existing workflows.

This KEP is tracked to graduate to beta in the upcoming v1.30 release

Subprojects and Dependency Updates

kustomize to v5.4.1 & 5.4.0 Fix null YAML values being replaced by “null”

containerd v1.7.15 Adds mediatype to OCI index record on export & v1.6.31

via Last Week in Kubernetes Development https://lwkd.info/

April 10, 2024 at 12:10PM

#Kubernetes #K8s

·lwkd.info·Apr 11, 2024

Week Ending April 07 2024

Microsoft employees exposed internal passwords in security lapse | TechCrunch

April 10, 2024 at 08:54AM

via Instapaper

·techcrunch.com·Apr 11, 2024

Microsoft employees exposed internal passwords in security lapse | TechCrunch

The best monitors for every budget in 2024

April 10, 2024 at 07:51AM

via Instapaper

·engadget.com·Apr 11, 2024

The best monitors for every budget in 2024

Blog: Spotlight on SIG Architecture: Code Organization

https://www.kubernetes.dev/blog/2024/04/11/sig-architecture-code-spotlight-2024/

This is the third interview of a SIG Architecture Spotlight series that will cover the different subprojects. We will cover SIG Architecture: Code Organization.

In this SIG Architecture spotlight I talked with Madhav Jivrajan (VMware), a member of the Code Organization subproject.

Introducing the Code Organization subproject

Frederico (FSM): Hello Madhav, thank you for your availability. Could you start by telling us a bit about yourself, your role and how you got involved in Kubernetes?

Madhav Jivrajani (MJ): Hello! My name is Madhav Jivrajani, I serve as a technical lead for SIG Contributor Experience and a GitHub Admin for the Kubernetes project. Apart from that I also contribute to SIG API Machinery and SIG Etcd, but more recently, I’ve been helping out with the work that is needed to help Kubernetes stay on supported versions of Go, and it is through this that I am involved with the Code Organization subproject of SIG Architecture.

FSM: A project the size of Kubernetes must have unique challenges in terms of code organization – is this a fair assumption? If so, what would you pick as some of the main challenges that are specific to Kubernetes?

MJ: That’s a fair assumption! The first interesting challenge comes from the sheer size of the Kubernetes codebase. We have ≅2.2 million lines of Go code (which is steadily decreasing thanks to dims and other folks in this sub-project!), and a little over 240 dependencies that we rely on either directly or indirectly, which is why having a sub-project dedicated to helping out with dependency management is crucial: we need to know what dependencies we’re pulling in, what versions these dependencies are at, and tooling to help make sure we are managing these dependencies across different parts of the codebase in a consistent manner.

Another interesting challenge with Kubernetes is that we publish a lot of Go modules as part of the Kubernetes release cycles, one example of this is client-go.However, we as a project would also like the benefits of having everything in one repository to get the advantages of using a monorepo, like atomic commits… so, because of this, code organization works with other SIGs (like SIG Release) to automate the process of publishing code from the monorepo to downstream individual repositories which are much easier to consume, and this way you won’t have to import the entire Kubernetes codebase!

Code organization and Kubernetes

FSM: For someone just starting contributing to Kubernetes code-wise, what are the main things they should consider in terms of code organization? How would you sum up the key concepts?

MJ: I think one of the key things to keep in mind at least as you’re starting off is the concept of staging directories. In the kubernetes/kubernetes repository, you will come across a directory called staging/. The sub-folders in this directory serve as a bunch of pseudo-repositories. For example, the kubernetes/client-go repository that publishes releases for client-go is actually a staging repo.

FSM: So the concept of staging directories fundamentally impact contributions?

MJ: Precisely, because if you’d like to contribute to any of the staging repos, you will need to send in a PR to its corresponding staging directory in kubernetes/kubernetes. Once the code merges there, we have a bot called the publishing-bot that will sync the merged commits to the required staging repositories (like kubernetes/client-go). This way we get the benefits of a monorepo but we also can modularly publish code for downstream consumption. PS: The publishing-bot needs more folks to help out!

For more information on staging repositories, please see the contributor documentation.

FSM: Speaking of contributions, the very high number of contributors, both individuals and companies, must also be a challenge: how does the subproject operate in terms of making sure that standards are being followed?

MJ: When it comes to dependency management in the project, there is a dedicated team that helps review and approve dependency changes. These are folks who have helped lay the foundation of much of the tooling that Kubernetes uses today for dependency management. This tooling helps ensure there is a consistent way that contributors can make changes to dependencies. The project has also worked on additional tooling to signal statistics of dependencies that is being added or removed: depstat

Apart from dependency management, another crucial task that the project does is management of the staging repositories. The tooling for achieving this (publishing-bot) is completely transparent to contributors and helps ensure that the staging repos get a consistent view of contributions that are submitted to kubernetes/kubernetes.

Code Organization also works towards making sure that Kubernetes stays on supported versions of Go. The linked KEP provides more context on why we need to do this. We collaborate with SIG Release to ensure that we are testing Kubernetes as rigorously and as early as we can on Go releases and working on changes that break our CI as a part of this. An example of how we track this process can be found here.

Release cycle and current priorities

FSM: Is there anything that changes during the release cycle?

MJ During the release cycle, specifically before code freeze, there are often changes that go in that add/update/delete dependencies, fix code that needs fixing as part of our effort to stay on supported versions of Go.

Furthermore, some of these changes are also candidates for backporting to our supported release branches.

FSM: Is there any major project or theme the subproject is working on right now that you would like to highlight?

MJ: I think one very interesting and immensely useful change that has been recently added (and I take the opportunity to specifically highlight the work of Tim Hockin on this) is the introduction of Go workspaces to the Kubernetes repo. A lot of our current tooling for dependency management and code publishing, as well as the experience of editing code in the Kubernetes repo, can be significantly improved by this change.

Wrapping up

FSM: How would someone interested in the topic start helping the subproject?

MJ: The first step, as is the first step with any project in Kubernetes, is to join our slack: slack.k8s.io, and after that join the #k8s-code-organization channel. There is also a code-organization office hours that takes place that you can choose to attend. Timezones are hard, so feel free to also look at the recordings or meeting notes and follow up on slack!

FSM: Excellent, thank you! Any final comments you would like to share?

MJ: The Code Organization subproject always needs help! Especially areas like the publishing bot, so don’t hesitate to get involved in the #k8s-code-organization Slack channel.

via Kubernetes Contributors – Contributor Blog https://www.kubernetes.dev/blog/

April 10, 2024 at 08:00PM

#Kubernetes #K8s

·kubernetes.dev·Apr 11, 2024

Blog: Spotlight on SIG Architecture: Code Organization

Spotlight on SIG Architecture: Code Organization

https://kubernetes.io/blog/2024/04/11/sig-architecture-code-spotlight-2024/

Author: Frederico Muñoz (SAS Institute)

This is the third interview of a SIG Architecture Spotlight series that will cover the different subprojects. We will cover SIG Architecture: Code Organization.

In this SIG Architecture spotlight I talked with Madhav Jivrajan (VMware), a member of the Code Organization subproject.

Introducing the Code Organization subproject

Frederico (FSM): Hello Madhav, thank you for your availability. Could you start by telling us a bit about yourself, your role and how you got involved in Kubernetes?

Madhav Jivrajani (MJ): Hello! My name is Madhav Jivrajani, I serve as a technical lead for SIG Contributor Experience and a GitHub Admin for the Kubernetes project. Apart from that I also contribute to SIG API Machinery and SIG Etcd, but more recently, I’ve been helping out with the work that is needed to help Kubernetes stay on supported versions of Go, and it is through this that I am involved with the Code Organization subproject of SIG Architecture.

FSM: A project the size of Kubernetes must have unique challenges in terms of code organization -- is this a fair assumption? If so, what would you pick as some of the main challenges that are specific to Kubernetes?

MJ: That’s a fair assumption! The first interesting challenge comes from the sheer size of the Kubernetes codebase. We have ≅2.2 million lines of Go code (which is steadily decreasing thanks to dims and other folks in this sub-project!), and a little over 240 dependencies that we rely on either directly or indirectly, which is why having a sub-project dedicated to helping out with dependency management is crucial: we need to know what dependencies we’re pulling in, what versions these dependencies are at, and tooling to help make sure we are managing these dependencies across different parts of the codebase in a consistent manner.

Another interesting challenge with Kubernetes is that we publish a lot of Go modules as part of the Kubernetes release cycles, one example of this is client-go.However, we as a project would also like the benefits of having everything in one repository to get the advantages of using a monorepo, like atomic commits... so, because of this, code organization works with other SIGs (like SIG Release) to automate the process of publishing code from the monorepo to downstream individual repositories which are much easier to consume, and this way you won’t have to import the entire Kubernetes codebase!