Adventures in DevOps Kubernetes Schema Validation Tools with Eyar Zilberman - DevOps 227
Dec 12, 2024
Eyar Zilberman, Product Lead at Datree and a law school graduate, shares insights on Kubernetes schema validation tools that prevent misconfigurations. He discusses the critical role these tools play in catching errors early in the development process. Eyar introduces key tools like KubeVal and KubeConform while advocating for an improved developer experience with new Kubernetes functionalities. He also highlights the impact of the Tel Aviv GitHub community, promoting collaboration and shared learning among developers.
AI Snips
Chapters
Books
Transcript
Episode notes
Helm and Validation
- Helm charts ultimately render Kubernetes manifests.
- Use tools like kubeval or kubeconform to validate the rendered manifests.
Shift Left Validation
- Validate Kubernetes manifests early and often, shifting left.
- Implement validations locally, in CI, and before deployment to catch errors quickly.
Datadog's DDoS Mishap
- Datadog's Kubernetes configuration, with an always-pull image policy and three IP addresses, triggered a DDoS alert.
- A buggy code deployment caused continuous image pulls, leading to a vendor blocking Datadog, highlighting the risk of always-pull policies.
