Kubernetes Podcast from Google

Banzai Cloud is a cloud-native software company that builds Pipeline, a managed Cloud Native application and devops platform, featuring tools for managing multi- and hybrid-cloud Kubernetes deployments. Pipeline is open source, and Banzai Cloud has many other interesting open-source projects, including a Kubernetes distribution, and operators for things like Vault, Kafka and Istio. Adam and Craig talk to its co-founder and CTO, Janos Matyas, who is based in Budapest, but is spiritually of Oahu, Hawaii. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Is this what childrens music has become? Atom and his Package Parry Grip Baby Shark, Trap Remix Koo Koo Kanga Roo Dogs That Look Like Their Owners Runner-up Winner News of the week Kubernetes 1.15 is released Announcing Envoy Mobile kubectl cp vulnerability Kontena Pharos 2.4 Episode 31, with Jari Kolehmainen CNCF announces SIGs Aqua Security 4.2 Mitigating container image vulnerabilities Scytale Enteprise 1.0 Episode 45, with Andrew Jessup Diamanti 2019 Container Survey (PDF) Fast key-value stores: An idea whose time has come and gone Slicer Ringpop Links from the interview Banzai Cloud Pipeline GitHub Cloud pricing info Telescopes Banzai PKE for Azure and AWS Operators: CoreOS’ Operator Framework and SDK Bank-Vaults and source Logging Operator and source Kafka Operator and source Istio Operator and source The Banzai Pipeline surf spot Not related to the art of small trees Telescopes surf spot Janos Matyas on Twitter

Istio 1.2 has been released. Louis Ryan is a core contributor to Istio and a member of its Technical Oversight Committee, in his role as Principal Engineer at Google Cloud. He talks to Craig and Adam about his history with API infrastructure and the service mesh, and the history and future of the Istio project. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Adam goes to the Northwest Garlic Festival Anthropomorphic garlic cloves Pineapple Garlic Jelly Craig goes to Fleetwood Mac News of the week Istio 1.2 HAProxy 2.0 New Docker Desktop for Windows with WSL 2 coming Facebook peels the lid off Tupperware Wind River adds Docker and Kubernetes support for the edge Banzai Cloud adds Istio to Pipeline Apple joins the CNCF as a Platinum member Modernize IT 2019 digital conference from Google Cloud Links from the interview Istio service mesh Louis Ryan’s talk at QCon gRPC Sidecar pattern Core features of Istio amalgam8 from IBM in 2016 What is a service mesh? Envoy Proxy Istio 1.2 release notes Snow Leopard: 0 new features The original announcement of Istio 0.1 The upcoming Istio operator Common misconceptions: Design goals Community Weekly community meeting Working groups discuss.istio.io Related episodes: SPIFFE, with Andrew Jessup Envoy, with Matt Klein Istio at 1.0, with Dan Ciruli and Jasmine Jaksic Louis Ryan on Twitter

Darren Shepherd builds the Cloud at Rancher Labs, a company making entirely open source Kubernetes tooling, from the enterprise to the edge. This week Craig and Adam will finally learn how to pronounce ‘k3s’ and ‘k3OS’. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Day of the Tentacle at The Digital Antiquarian Remastered, on sale at gog.com Vigil Files (Android) News of the week Reflections on the Fifth Anniversary of Kubernetes Happy birthday from Mum and Dad I’m Tim Hockin, a top level Kubernetes maintainer. AMA! Orka, from MacStadium Introductory video from AltConf Five enterprise takeaways from KubeCon EU by Platform9: number 4, the SOA Tikka Masala, will shock you 11 salary statistics for Kubernetes jobs from The Enterpriser’s Project Want to work for Google? E-mail us! Links from the interview Rancher Labs Series A announcement, pre-Kubernetes Original Rancher 1.x beta annoucement Rancher 2.0 announcement RKE Longhorn OpenEBS used to be based on Longhorn Darren’s Rancher shirt k3s - “Lightweight Kubernetes. 5 less than k8s.” How do you pronounce the “k3s”? k3OS RancherOS Huevos rancheros k3d The Kaiser Chiefs Rio Announcement Knative Knative build templates Dancing on the sand Darren Shepherd on Twitter

Evan Powell is the CEO and chairman of MayaData, the corporate sponsor of OpenEBS, which has just joined the CNCF Sandbox. He talks to Adam and Craig about Cloud Native storage, chaos engineering for stateful workloads, and the stubbornness of hybrid clouds. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Cricket and rugby on the same day Poseidon’s Anchor bass Black Mirror and The Rain Don’t go out in the pouring rain News of the week Docker bug allows reading/writing host files Advisory by Aleksa Sarai Duo Security writeup Kubernetes bug allows containers to run as root Security advisory GitHub issue GKE security bulletin Palo Alto Networks announces intention to buy Twistlock TechCrunch coverage CVEs found by Twistlock Labs Kubernetes Node.js client library 0.9.0 List of client libraries NVIDIA EGX CKA now valid for 3 years Microsoft news: AKS available in South Africa North OCI types and Helm 3 charts in Azure Container Registry Azure Monitor supports Windows Server nodes Links from the interview OpenEBS On GitHub Now a CNCF Sandbox project TOC issue: Propose OpenEBS into CNCF Sandbox OpenEBS accepted into CNCF and OpenEBS 0.9 released OpenEBS Project Update and whats coming in v1.0 A year later: updating Container Attached Storage by Evan Powell MayaData KUBEMOVE (and on GitHub) NDM, the Node Disk Manager Evan’s talk at SDC 2017 with Homer Simpson references New storage technologies: Optane/3D XPoint for DRAM-like storage NVME over Fabrics SPDK Fast fabrics Litmus (and on GitHub) Chaos Monkey and Simian Army Weave Scope The mule logo: OpenEBS, MayaData

Solo.io was founded in 2017 by this week’s guest, Idit Levine. She talks to Craig and Adam about API gateways, service meshes, and lots of project names with two O’s in them. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Casa Battlo Picasso Museum Dali Museum and Theatre in Figueres MoPOP in Seattle The “Beaker Sane” t-shirt A bottle of Sortilege whisky Gifted to us by Francois LeMessier Shared with the community at KubeCon News of the week Announcing SMI SMI Spec website CNAB and Virtual Kubelet updates from Microsoft Banzai Cloud Kafka Operator Razee: multi-cloud CD from IBM Couchbase Autonomous Kubernetes Operator 1.2 Rio, a MicroPaaS from Rancher Labs Atlassian Software for Kubernetes from Praqma Kyma goes 1.0 Intuit win the CNCF End User Award CapitalOne make their Kubernetes platform available Links from the interview Solo.io Gloo Envoy Proxy SuperGloo SMI GlooShot Service Mesh Hub Flagger by Weaveworks Chaos Debugging talk from KubeCon EU; discussing Loop Knative Using Gloo in Knative Idit Levine on Twitter

Bryan Liles is a Senior Staff Engineer at VMware, the program co-chair for this week’s KubeCon EU, a sought-after speaker, and a minority in an industry with few people who look like him. He shares his story with Craig and Adam, who also bring you the week’s news from KubeCon EU and beyond. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week KubeCon EU! Fox cubs! News of the week VMware acquires Bitnami and Bitnami is acquired by VMware Bitnami’s application catalog Knative 0.6 is out New API proposal GKE Sandbox: bring defense in depth to your pods Stackdriver Kubernetes Monitoring is GA Helm 3 preview Episode 11 with Vic Iglesias GKE announces Release Channels Docs Windows Server containers in Preview: Announced for Azure Kuberntes Service But not in Canada Announced for Google Kubernetes Engine But not for another week or so Bring your own subnet to AKS Lyft bug bounty program Velero 1.0 Digital Ocean Kubernetes is GA Kubernetes apps on GCP Marketplace Terraform Cloud Remote State Management CNCF adds 42 new members Cloud Native Logging with Fluentd OpenTracing + OpenCensus = OpenTelemetry OpenEBS joins the CNCF Lightning round: Harbor 1.8 Supergiant Kubernetes Toolkit 2.1.0 Ambassador 0.7 Mirantis BYOD MiniKF from Arrikto Gravity 6.0 Cloud 66 Maestro k8up from VSHN Links from the interview Early tech: Tandy CoCo 3 Tandy 1000 TL The Sound Blaster CIDR: how big is a /12? The Darker Side of Tech Giving away oscilloscopes Capital One vikings Kubernetes contributions in the last quarter Ksonnet Now archived Joe Beda in Episode 12 Kustomize, with a K Brian Grant on declarative application management Janet Kuo in Episode 29 George Hotz Bryan Liles on Twitter Bryan’s blog

Dan Dyer is Senior Vice President of Technical Product Management at Optiva, a provider of business support services to the telecommunications industry. Optiva have been moving services to Kubernetes, and with the help of Kyle Bassett and team from Arctiq, a cloud-native consultancy, kicking the tyres of Anthos and GKE On-Prem. Adam and Craig learn about this journey from Dan and Kyle, and discuss dragons and foxes. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Baby foxes Aaron Crickenberger interview on the Kubernetes blog Dragon research News of the week Red Hat: RHEL 8 and the Universal Base Image OpenShift 4 Operators all the way down Microsoft Azure OpenHat US DoJ approves IBM’s acqusition of Red Hat F5 closes its acquisition of NGINX Docker CEO Steve Singh steps down Alpine Linux root escalation: CVE-2019-5021 Go Distroless! Introducing GitHub Package Registry VS Code extension for Kubernetes goes 1.0 (changelog) WSL 2 brings Linux to Windows Gravitational: AWS vs Colo? and Hacker News debate k8s.af with Kubernetes failure stories Google Cloud launches GKE in Osaka, Tokyo KubeCon US 2019 CFP opens Railyard: Training ML models on Kubernetes at Stripe KubeOne from Loodse Kubedex: Kubernetes operating systems Akrobateo, a general-purpose load balancer for Kubernetes from Kontena Optimization of etcd at web-scale by Xingyu Chen Links from the interview Optiva Arctiq Kyle Bassett on Twitter

AutoTrader UK were an early adopter of Istio. Adopting it to meet GDPR requirements for encrypted traffic, Head of Infrastructure and Operations Russell Warman and lead engineer Karl Stoney have gone on to use it to reduce resource usage, and thus cost, as well as uncover bugs in their applications. They talk to Craig about it, while Adam serves his country. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod News of the week Microsoft and Red Hat announce KEDA ZDNet coverage Updates from Microsoft: AKS virtual nodes GA, DevSpaces GA, Policy in Preview AKS 1.9 end-of-life Banzai Cloud: PKE on Azure Banzai’s Chart Repository Service Remote development with VS Code DockerCon: Docker Enterprise 3.0 Docker Foundation Monzo Response: GitHub Chris Evans presenting at DevOps Exchange London Music: Response Velero v1.0.0-beta.1 is out Grafana dashboards for Kubernetes administrators by Povilas Versockas KubeCon EU Diversity Lunch and Hack Red Hat Quay v3 Rook 1.0 Episode 36 with Jared Watts 5G Depends on Kubernetes in the Cloud, according to Steven J. Vaughan-Nichols He also says Airship 1.0 marries Kubernetes and OpenStack for 5G’s good Airship 1.0 release notes Links from the interview Autotrader UK Craig, Russell and Karl in the studio Craig’s 1993 Vauxhall Cavalier GCP Case study Auto Trader UK cuts IT resource use through Google Cloud, Kubernetes and Istio adoption How Auto Trader UK, the UK’s largest automotive marketplace, uses Istio and Google Kubernetes Engine to drive change Russell on theCUBE at Google Cloud Next Mutual TLS encryption in Istio Onramp to Istio: An Adoption Story Google Cloud Next session with Dan Ciruli, Russell Warman and Karl Stoney Managing your costs on Kubernetes: Karl’s blog post Istio 1.1 feature: Sidecar resources Reduced CPU cycles by 90% 15,000 releases per year Russell Warman and Karl Stoney on Twitter

Gabe Jaynes is a DevOps Architect at KeyBank, an American retail bank. KeyBank were an early adopter of containers, and Gabe talks about the reasons they undertook this transformation. Craig and Adam also celebrate our first birthday and spoil the concept of spoilers. Please say hello and 🎂🎁! twitter: @kubernetespod mail: kubernetespodcast@google.com Chatter of the week Avengers: Endgame easter egg in Google search (no spoilers) The spoilers that Craig beeped out Throne of Games (no spoilers) Gorogoa “I desire a conversation. Will you talk to me?” News of the week DockerHub breached: change your password k3os, the Kubernetes Operating System Rancher OS Multi-cluster service mesh overview by Andrew Jenkins Containing our enthusiasm: All the Kubernetes security news from Google Cloud Next ‘19 by Maya Kaczorowski and Anne Bertucio Episode 008 How You Can Help Localize Kubernetes Docs by Zach Corleissen Episode 005 Hardware Accelerated SSL/TLS Termination in Ingress Controllers using Kubernetes Device Plugins and RuntimeClass by Mikko Ylinen EmpowHER Reception Renamed EmpowerUs For KubeCon + CloudNativeCon Europe 2019 Links from the interview KeyBank Cleveland, OH GKE On-Prem Anthos

Spotify were early adopters of Docker, and wrote their own deployment tool to run it in production. David Xia from the Spotify platform team talks about Spotify’s engineering, challenges, how Helios worked, and migrating from it to Kubernetes. Adam and Craig also give a round up of the week’s news, in the form of a question. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week James Holzhauer cleans the board on Jeopardy! Chihuly at Kew Gardens News of the week Introducing GKE Advanced Managed certs on GKE Ingress Linkerd 2.3 PodSecurityPolicy support on AKS Berglas from Google Cloud Platform kubernetes-external-secrets from GoDaddy Platform9 open-sources KlusterKit CNCF and Alibaba offer free Cloud Native training to Chinese developers Tinder’s move to Kubernetes kube-iptables-tailer The future of Cloud Providers in Kubernetes Pod priority and preemption Istio observability with Go and gRPC/protobuf microservices Beating JSON performance with protobuf Links from the interview Spotify This podcast on Spotify Spotify open source utilities on GitHub Helios 2014 introduction video with Rohan Singh Apollo: Java libraries for microservices GKE Usage Metering: Whose line item is it anyway? with Madhu Yennamani and Yang Guan from Google, and David Xia from Spotify Episode 40 with Madhu Yennamani GCP Firewall Enforcer David Xia on Twitter