Cloud Native weekly highlights:

  • Results of HashiCorp’s Cloud Strategy Status survey released
  • Gloo Mesh 1.1 and Gloo Mesh Gateway 1.0 are released
  • GKE has added OIDC identity provider and gVNIC support
  • Argo CD ApplicationSet Controller 0.2.0 release
  • OpenTelemetry became an incubator project for CNCF
  • Open Source Project Recommendation
  • The article recommended

DevOps, developer performance knowledge and tools platform Ledge, recently launched the DevOps Periodic Table. Yes, you heard that right 😂, this DevOps periodic table is modeled after Mendeleev’s periodic table, each element represents a DevOps tool, very creative.

It is worth mentioning that KubeSphere is also included in the periodic table. KubeSphere DevOps provides a Jenkins based CI/CD pipeline to support automated workflow. Including binary-to-image (B2I) and source-to-image (S2I) to help different organizations speed up time to market. Since KubeSphere 3.1.0, common pipeline templates have been built in to help DevOps engineers improve CI/CD pipeline creation and operation efficiency. Most scenarios can be modified based on pipelined templates, eliminating the need to create from scratch and achieving true out-of-the-box.

Cloud native dynamics

HashiCorp’s State of the Cloud Strategy survey results released: Welcome to the cloudy era

The first state of the Cloud strategy survey conducted by HashiCorp found some very clear results: A common multi-cloud operating model has become the de facto standard for IT organizations of all shapes and sizes to achieve digital transformation. IT organizations are committing significant resources to multi-cloud deployments, and those investments are already paying off. At the same time, however, businesses are still dealing with various cloud challenges and dependencies.

The survey was based on more than 3,200 technology practitioners and decision makers from HashiCorp’s opt-in contact database.

For details, see survey Results

Gloo Mesh 1.1 and Gloo Mesh Gateway 1.0 are released

The Solo team has released Gloo Mesh 1.1, which integrates with Gloo Portal for GitOps and CI/CD, and the Gloo Mesh Gateway, the first fully functional enterprise API Gateway built on Istio. Solo was the first company to offer a full-featured developer Portal for Istio via Gloo Portal, and now with Gloo Mesh Gateway, Solo is the first TO offer a full API Gateway for Istio. This is an important release.

The core features of Gloo Mesh are as follows:

  • Gloo Portal integration with Gloo Mesh and Istio
  • An additional version of long-supported Istio
  • Observability improvements to the user experience
  • Improve security certificate management
  • Install more safety rails during the process

see

GKE has added OIDC identity provider and gVNIC support

Identity Service for GKE extends existing authentication solutions to GKE clusters. With OpenID Connect (OIDC) support, you can manage access to the Kubernetes cluster by following standard procedures for creating, enabling, and deactivating user accounts in your organization. Identity Service for GKE is limited to OIDC Identity providers only.

See this page to learn how to configure an external identity provider to authenticate to the Google Kubernetes Engine (GKE) cluster.

The Google Virtual NIC (gVNIC) is a virtual network interface. Installing the gVNIC driver enables more efficient traffic transfer between Google network infrastructures. GVNIC is an alternative to virtio-based Ethernet drivers.

For example, a gVNIC is required to support higher network bandwidth, such as speeds of 50-100 Gbps (which can be used for distributed workloads on gPU-attached virtual machines). In addition, gVNIC is required when certain virtual machine shapes are used for optimal performance when using virtual machines.

See this page to learn how to enable the Google Virtual NIC (gVNIC) in the Google Kubernetes Engine (GKE) cluster.

Argo CD ApplicationSet Controller 0.2.0 release

Argo CD ApplicationSet Controller 0.2.0, the second version of the product, was released in conjunction with Argo CD V2.1.

Here are the new features in this release:

  • Matrix generator
  • SCM vendor generator
  • Cluster decision resource generator
  • Keep application child resources when deleting the parent application set
  • Allow any key/value pairs in the list builder
  • Add YAML configuration file support to Git file generators
  • Added additional path parameters for Git file generators
  • Add exclusion path support for Git directories

see

OpenTelemetry became an incubator project for CNCF

The CNCF Technology Oversight Committee (TOC) voted to adopt OpenTelemetry as an incubator project for CNCF. OpenTelemetry is an observable framework for cloud-native software. It is a collection of tools, apis, and SDKS that can be used to meter, generate, collect, and export telemetry data (including metrics, logs, and traces) for analysis to better understand software performance and behavior.

The OpenTelemetry project was created after the merger of the OpenCensus and OpenTracing projects in May 2019 and soon thereafter became a sandbox project for CNCF. Since then, the OpenTelemetry team has built apis and SDKS for 11 languages and added full support for metrics and tracing to the OpenTelemetry protocol (OTLP).

see

Open Source Project Recommendation

K8s Vault Webhook

Kubernetes Secretes management has never been easy, k8S-vault-Webhook provides a new way to manage secret keys, It can dynamically inject Secret into Kubernetes from third-party key managers (including Vault, AWS, GCP, and Azure’s) for enhanced security.

pod-reaper

Pod-reaper is a rules-based POD killing controller designed to kill pods that meet certain conditions.

Lens Resource Map

Lens Resource Map is a plug-in for Kubernetes IDE Lens. It is used to visually display the topological relationships among Resource objects in Kubernetes.

cpufetch

Similar to NeoFETCH, CPUFETCH can display the CPU information of the system in beautiful ASCII characters at the terminal, including CPU name, microarchitecture, frequency, core, threads, peak performance, cache size, advanced vector expansion, and so on.

The article recommended

Cloud Native Toolkit – GitOps Production Deployment Guide

The concept of GitOps was first proposed by Weaveworks in 2017. Its goal is to automate the operation of Kubernetes (K8s) systems using models from outside the system.

This article describes how to use GitOps to manage the K8S-BASED infrastructure, services, and application layers. It takes into account the various roles that interact with the system and clearly separates the responsibilities of each role.

Implement Kubernetes log and alarm in Serverless mode

Once we collect the container logs to the message server, what do we do with them? Deploying a dedicated log processing workload can be costly, and it is difficult to estimate the standby of a log processing workload when the volume of logs increases or plummets. This paper provides a Serverless log processing idea, which can reduce the link cost of the task and improve its flexibility.

The Twitter log system is upgraded

Previous centralized log collection on Twitter was limited by its weak ingestion and query capabilities, leading to poor adoption. Previous solutions ingested about 600,000 events per second in each data center, but only about 10% of the logs were committed and the remaining 90% were discarded by the rate limiter. To solve this problem, Twitter adopted the Splunk Enterprise.

This new service is named Application Log Forwarder (ALF). It reads events from Kafka and submits them to the Splunk Enterprise using the HTTP event collector. Twitter can now collect about 42 megabytes of data per day in each data center, from log declarations to disk storage in less than 10 seconds, 5 million events per second per data center, four times as much log data as before, and has a better query engine and user adoption rate.

This article is published by OpenWrite!