November 2020 cloud-native news

Hello, from all of us at Sysdig!

What a month for the cloud-native community! KubeCon North America has been a success, and there’s been plenty of product announcements, Sysdig included. Don’t miss our cloud-native highlights!

• The news
• Industry buzz
• What’s new in the community?
• What’s new with Sysdig?
• Meet us online

---

---

Ping us @sysdig or on our open-source Sysdig Slack group to share your feedback and suggest topics for future issues! Previous editions are in the archive.

The news

Helm turns five years old. Congratulations!

Remember, helm stable and incubator charts are moving.

Linkerd 2.9 brings mTL, ARM support, and more!

Vitess 8 comes with improved MySQL compatibility, and more!

CNCF Welcomes Katie Gamanji as Ecosystem Advocate.

AWS Lightsail now deploys containers.

AWS is building its own public registry for Docker container images.

vSphere 7 with Tanzu Kubernetes now offers HAProxy Enterprise.

CloudSecDocs is a new repository of technical notes, how-tos, and cheat sheets.

Industry buzz

Service mesh is still hard

What does service mesh need to improve to increase adoption?

5 best practices to ensure your container images are secure

Some tips to make them as secure as possible throughout the app’s life cycle.

Yelp’s new stream processing platform runs on Kubernetes

Learn how they are jumping to Kubernetes without breaking their current tools.

A fireside chat to demystify KEPs

Kubernetes Enhancement Proposals (KEP) are the soul of every new feature.

How to prepare for the coming CPU confusion

ARM is landing on servers and desktops. Get ready!

What’s new in the community?

Container networking is simple

Learn the basics of container networking with this detailed tutorial.

Give access to your cluster with a client certificate

It’s the easiest way to let your devops play with the cluster securely.

Rust vs. Go

They are both modern and trendy languages, ideal for cloud-native projects. Discover their strengths and differences.

When LIST is a lie in Kubernetes

An example of how the “LIST” permission may be misleading, allowing access to Kubernetes secrets.

Create your first Knative app

A quick tutorial on how to write your first serverless app with Knative and minikube.

 

What’s New with Sysdig?

Kubernetes-native network security with Sysdig

We just launched a feature in Sysdig Secure that will give you deep network visibility, plus the ability to create Kubernetes network policies with just a few clicks.

Learn all about this feature, and why native controls are the way to go.

Zoom into Kinsing

Discover how the Kinsing malware operates to take over your cluster.

How to monitor Kubernetes control plane

Over the past months, we’ve been building a comprehensive guide on how to monitor the key components of the Kubernetes control plane with Prometheus.

Find what the important metrics are, along with some PromQL examples.

Sysdig and Falco at KubeCon North America

KubeCon North America took place last week. And, although virtual cannot beat in-person events, it was a success!

Until the videos are public, here are the presentations from Sysdig and Falco members:

Securing containers and Kubernetes on AWS

Detecting security policies violation using Falco: A practical introduction

Security kill chain stages in a 100k+ daily container environment with Falco

Lives on the line: Learning disaster response from the coronavirus pandemic

Bypass Falco

Everything you should be doing, but aren’t: DevSecOps for K8s workflows

We also hosted two side events you can watch on demand:

Recent releases and ecosystem updates

Most Sysdig products received updates in the last few days: Sysdig Secure, Sysdig Monitor, our Falco rules, new PromCat.io resources, and much more. Read all about Sysdig’s interesting new features and ecosystem updates in our blog.

 

Stay safe. Meet us online: