This post examines finer-grained resource controls in Kubernetes using the Open Policy Agent (OPA) Gatekeeper project, which can complement Kubernetes RBAC. | Continue reading
An in-depth analysis of the current features and limitations of the managed Kubernetes services from Amazon (EKS), Google (GKE), and Microsoft (AKS) | Continue reading
CVE-2019-11247 discloses a serious vulnerability in the K8s API that could allow users to read, modify or delete cluster-wide custom resources, even if they only have RBAC permissions for namespaced resources. | Continue reading
If you know Kubernetes you have probably heard of Istio. Read our guide to understand what is Istio, what Istio does, and whether you need Istio. | Continue reading
Kubernetes is complex so here's a checklist to ensure your containers and k8s clusters are production-ready for security, stability, and scale | Continue reading