Kubernetes Podcast from Google

Bryan Liles is a Senior Staff Engineer at VMware, the program co-chair for this week’s KubeCon EU, a sought-after speaker, and a minority in an industry with few people who look like him. He shares his story with Craig and Adam, who also bring you the week’s news from KubeCon EU and beyond. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week KubeCon EU! Fox cubs! News of the week VMware acquires Bitnami and Bitnami is acquired by VMware Bitnami’s application catalog Knative 0.6 is out New API proposal GKE Sandbox: bring defense in depth to your pods Stackdriver Kubernetes Monitoring is GA Helm 3 preview Episode 11 with Vic Iglesias GKE announces Release Channels Docs Windows Server containers in Preview: Announced for Azure Kuberntes Service But not in Canada Announced for Google Kubernetes Engine But not for another week or so Bring your own subnet to AKS Lyft bug bounty program Velero 1.0 Digital Ocean Kubernetes is GA Kubernetes apps on GCP Marketplace Terraform Cloud Remote State Management CNCF adds 42 new members Cloud Native Logging with Fluentd OpenTracing + OpenCensus = OpenTelemetry OpenEBS joins the CNCF Lightning round: Harbor 1.8 Supergiant Kubernetes Toolkit 2.1.0 Ambassador 0.7 Mirantis BYOD MiniKF from Arrikto Gravity 6.0 Cloud 66 Maestro k8up from VSHN Links from the interview Early tech: Tandy CoCo 3 Tandy 1000 TL The Sound Blaster CIDR: how big is a /12? The Darker Side of Tech Giving away oscilloscopes Capital One vikings Kubernetes contributions in the last quarter Ksonnet Now archived Joe Beda in Episode 12 Kustomize, with a K Brian Grant on declarative application management Janet Kuo in Episode 29 George Hotz Bryan Liles on Twitter Bryan’s blog

Dan Dyer is Senior Vice President of Technical Product Management at Optiva, a provider of business support services to the telecommunications industry. Optiva have been moving services to Kubernetes, and with the help of Kyle Bassett and team from Arctiq, a cloud-native consultancy, kicking the tyres of Anthos and GKE On-Prem. Adam and Craig learn about this journey from Dan and Kyle, and discuss dragons and foxes. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Baby foxes Aaron Crickenberger interview on the Kubernetes blog Dragon research News of the week Red Hat: RHEL 8 and the Universal Base Image OpenShift 4 Operators all the way down Microsoft Azure OpenHat US DoJ approves IBM’s acqusition of Red Hat F5 closes its acquisition of NGINX Docker CEO Steve Singh steps down Alpine Linux root escalation: CVE-2019-5021 Go Distroless! Introducing GitHub Package Registry VS Code extension for Kubernetes goes 1.0 (changelog) WSL 2 brings Linux to Windows Gravitational: AWS vs Colo? and Hacker News debate k8s.af with Kubernetes failure stories Google Cloud launches GKE in Osaka, Tokyo KubeCon US 2019 CFP opens Railyard: Training ML models on Kubernetes at Stripe KubeOne from Loodse Kubedex: Kubernetes operating systems Akrobateo, a general-purpose load balancer for Kubernetes from Kontena Optimization of etcd at web-scale by Xingyu Chen Links from the interview Optiva Arctiq Kyle Bassett on Twitter

AutoTrader UK were an early adopter of Istio. Adopting it to meet GDPR requirements for encrypted traffic, Head of Infrastructure and Operations Russell Warman and lead engineer Karl Stoney have gone on to use it to reduce resource usage, and thus cost, as well as uncover bugs in their applications. They talk to Craig about it, while Adam serves his country. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod News of the week Microsoft and Red Hat announce KEDA ZDNet coverage Updates from Microsoft: AKS virtual nodes GA, DevSpaces GA, Policy in Preview AKS 1.9 end-of-life Banzai Cloud: PKE on Azure Banzai’s Chart Repository Service Remote development with VS Code DockerCon: Docker Enterprise 3.0 Docker Foundation Monzo Response: GitHub Chris Evans presenting at DevOps Exchange London Music: Response Velero v1.0.0-beta.1 is out Grafana dashboards for Kubernetes administrators by Povilas Versockas KubeCon EU Diversity Lunch and Hack Red Hat Quay v3 Rook 1.0 Episode 36 with Jared Watts 5G Depends on Kubernetes in the Cloud, according to Steven J. Vaughan-Nichols He also says Airship 1.0 marries Kubernetes and OpenStack for 5G’s good Airship 1.0 release notes Links from the interview Autotrader UK Craig, Russell and Karl in the studio Craig’s 1993 Vauxhall Cavalier GCP Case study Auto Trader UK cuts IT resource use through Google Cloud, Kubernetes and Istio adoption How Auto Trader UK, the UK’s largest automotive marketplace, uses Istio and Google Kubernetes Engine to drive change Russell on theCUBE at Google Cloud Next Mutual TLS encryption in Istio Onramp to Istio: An Adoption Story Google Cloud Next session with Dan Ciruli, Russell Warman and Karl Stoney Managing your costs on Kubernetes: Karl’s blog post Istio 1.1 feature: Sidecar resources Reduced CPU cycles by 90% 15,000 releases per year Russell Warman and Karl Stoney on Twitter

Gabe Jaynes is a DevOps Architect at KeyBank, an American retail bank. KeyBank were an early adopter of containers, and Gabe talks about the reasons they undertook this transformation. Craig and Adam also celebrate our first birthday and spoil the concept of spoilers. Please say hello and 🎂🎁! twitter: @kubernetespod mail: kubernetespodcast@google.com Chatter of the week Avengers: Endgame easter egg in Google search (no spoilers) The spoilers that Craig beeped out Throne of Games (no spoilers) Gorogoa “I desire a conversation. Will you talk to me?” News of the week DockerHub breached: change your password k3os, the Kubernetes Operating System Rancher OS Multi-cluster service mesh overview by Andrew Jenkins Containing our enthusiasm: All the Kubernetes security news from Google Cloud Next ‘19 by Maya Kaczorowski and Anne Bertucio Episode 008 How You Can Help Localize Kubernetes Docs by Zach Corleissen Episode 005 Hardware Accelerated SSL/TLS Termination in Ingress Controllers using Kubernetes Device Plugins and RuntimeClass by Mikko Ylinen EmpowHER Reception Renamed EmpowerUs For KubeCon + CloudNativeCon Europe 2019 Links from the interview KeyBank Cleveland, OH GKE On-Prem Anthos

Spotify were early adopters of Docker, and wrote their own deployment tool to run it in production. David Xia from the Spotify platform team talks about Spotify’s engineering, challenges, how Helios worked, and migrating from it to Kubernetes. Adam and Craig also give a round up of the week’s news, in the form of a question. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week James Holzhauer cleans the board on Jeopardy! Chihuly at Kew Gardens News of the week Introducing GKE Advanced Managed certs on GKE Ingress Linkerd 2.3 PodSecurityPolicy support on AKS Berglas from Google Cloud Platform kubernetes-external-secrets from GoDaddy Platform9 open-sources KlusterKit CNCF and Alibaba offer free Cloud Native training to Chinese developers Tinder’s move to Kubernetes kube-iptables-tailer The future of Cloud Providers in Kubernetes Pod priority and preemption Istio observability with Go and gRPC/protobuf microservices Beating JSON performance with protobuf Links from the interview Spotify This podcast on Spotify Spotify open source utilities on GitHub Helios 2014 introduction video with Rohan Singh Apollo: Java libraries for microservices GKE Usage Metering: Whose line item is it anyway? with Madhu Yennamani and Yang Guan from Google, and David Xia from Spotify Episode 40 with Madhu Yennamani GCP Firewall Enforcer David Xia on Twitter

Live from Google Cloud Next ‘19 the KPfG team presents a fireside chat with Eric Brewer, our first guest with their own Wikipedia page. Eric devised the CAP theorem for distributed systems, based on his work at early search company Inktomi and UC Berkeley. He was the person who announced Kubernetes to the world almost 5 years ago, and has been working on Google’s cluster and compute infrastructure since 2011. How did you like the live show format? Please let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod News of the week Anthos: Everything You Want To Know About Anthos - Google’s Hybrid And Multi-Cloud Platform by Janakiram MSV New Google Cloud Service’s Key Selling Point: It Works Great With AWS and Azure by Jonathan Vanian Google Cloud makes some strong moves to differentiate itself from AWS and Microsoft by Ron Miller Fluentd graduates to top level project in CNCF Speakers for KubeCon China ‘19 announced AKS to South Central, South and Central The Fargate Illusion, by Lee Briggs Fargate and EKS roadmap OpenStack Stein launches with improved Kubernetes support New GKE features from Next session videos: GKE Sandbox Workload Identity GCP Config Connector Process ID limiting for stability improvements in Kubernetes 1.14 Links from the interview Eric Brewer: Wikipedia Twitter UCB Inktomi DEC SRC, working on AltaVista Inktomi’s wild ride: A Personal View of the Internet Bubble - Eric presenting at the Computer History Museum in 2008 CAP theorem Cat theorem Spanner, TrueTime and the CAP theorem Application Modernization and the Decoupling of Infrastructure, Services and Teams Our revised title President Clinton with Eric Eric’s interview on theCUBE at Next

Anthos (previously known as Cloud Services Platform) has just gone GA at Google Cloud Next. One of its new features is Anthos Migrate, a tool for migrating monolithic apps directly to containers. Issy Ben-Shaul is a Director of Software Engineering at Google Cloud and led the team building Anthos Migrate. He talks to Craig and Adam about it. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Adam enjoyed: Umbrella Academy on TV Hearthstone on the computers Jarrod Alonge in his ears Death metal in water wings Craig enjoyed: Saturday 2/3 of “On The Basis Of Sex” News of the week Anthos from Google Cloud Launch announcement Launch keynote What’s in the box? Cloud Run and Cloud Run on GKE Project Eirini updates bring Kubernetes to Cloud Foundry OPA graduates to the CNCF incubator CRI-O joins the CNCF incubator Buildpacks: defense against the Docker arts Local persistent volumes in Kubernetes - PVC pipes! Istio 1.1.2 out for the Envoy CVEs: NUL parsing bug Path normalisation bug Why Rainforest moved from Heroku to GKE Enabling RBAC for Groups in GKE Metalkube 🤘 Krew moves to SIG-CLI New gVisor website Links from the interview Anthos Migrate & Velostrata Next sessions: Anthos Migrate: On-Prem to Cloud-Native on GKE Real World Customer Migration with Cardinal Health and Atos Anthos Issy Ben-Shaul on Twitter

Tekton brings Kubernetes-style resources for declaring CI/CD-style pipelines. Kim Lewandowski is the Google Cloud product manager who recently announced it. She talks to Adam about the project while Craig sneaks in some vacation at the cafes of New Zealand. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Register for the Kubernetes Podcast from Google Cloud Live session! Craig has a lovely afternoon at the Cable Bay Cafe Auckland Kubernetes Meetup - thanks everyone! Adam reads Origin by Dan Brown Renowned Author Dan Brown, one of Craig’s favourite newspaper columns of all time News of the week Minikube releases v1.0.0 Episode 39, with Dan Lorenc Running Kubernetes locally on Linux with Minikube by Ihor Dvoretski Uber open-sources Peloton Square build a service mesh with Envoy and gRPC AWS App Mesh is GA Tetrate Q Star Trek Q The Service Mesh Era: Istio’s role in hybrid and multi-cloud by Megan O’Keefe Merging OpenTracing and OpenCensus kubectl cp vulnerability and CSI portmap vulnerability Brigade 1.0 from Deis & Microsoft Debugging an intermittent connection reset in kube-proxy by Yongkun Gui Register for the Kubernetes 1.14 webinar Meet the Ambassador: Paris Pittman Four key tips on how to do massive scale with Kubernetes by Reda Benzair Links from the interview Tekton Open Source Leadership Summit A tektōn is a Greek artisan or craftsman Formerly known as Knative Pipeline GitHub repo Triggermesh Aktion In Defense of YAML Continuous Delivery Foundation Contributing to Tekton Kim Lewandowski on Twitter

Kubernetes 1.14 is out! Your hosts talk to release manager Aaron Crickenberger of Google Cloud about the release process, working with Kubernetes Enhancement Proposals (KEPs), cat t-shirts, and being bearded on face vs. at heart. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week MySpace “loses” 12 years of music Peel Forest and The Green Man Cafe Kubernetes Podcast from Google Cloud Next Live Eric Brewer DockerCon 2014 keynote Sign up for free tickets to Google Cloud Next! News of the week Kubernetes 1.14 released Maybe you don’t need Kubernetes? (Spoiler: you do.) Gravity 5.5 with Helm chart support How a cryptocurrency miner made its way onto Kubernetes clusters at JW Player A guide to Kubernetes admission controllers Automated testing for Helm charts with Terratest Kubernetes End-to-End Testing for Everyone To Russia with Love: deploying Kubernetes in foreign locations Links from the interview Aaron Crickenberger Co-founder of SIG Testing Member of the Kubernetes steering committee Blackhawk flight simulator but it’s in a container Aaron’s soundcloud page Hugh Pagdham Release lead CI Signal playbook 1.13 release shadow Groundhog Day Aaron’s podcast recording cat t-shirt Episode 10, with Josh Berkus and Tim Pepper New in 1.14: Kubernetes Enhancement Proposals (KEPs) Code slush removed Windows containers GA Runtime gates GA Pod priority and preemption GA Durable local volumes GA LTS Working Group Cryptonomicon by Neal Stephenson: the suit and the beard Aaron Crickenberger on Twitter

SPIFFE is the Secure Production Identity Framework for Everyone. Craig hates the name. Andrew Jessup, co-founder and VP of Product at Scytale (with a C) tells him and Adam why they should look past that and how Jason Bourne fits into the world of Cloud Native. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Victim Support Official Page: Christchurch Shooting Victims’ Fund The Small Screw Phenomenon from The Book of Ultimate Truths by Robert Rankin News of the week Istio 1.1 is out! NGINX acquired by F5 Tetrate raises $12.1 million Buoyant raises less KubeCon EU schedule is live Rancher releases Submariner Takeaways from the Google Cloud Security Summit CNCF hits 375 members CNCF TOC for 2019 Kubernetes: AWS vs GCP vs Azure vs DigitalOcean VS Code updates for Kubernetes NetEase: 30,000 nodes in a cluster Music in Ancient Greece Links from the interview SPIFFE Scytale The scytale Joe Beda’s Gluecon talk Application Layer Transport Security, which Andrew and Joe refer to as “LOAS” The Bourne Identity Istio Citadel Scytale Enterprise Andrew Jessup on Twitter