6 months to achieve your goals | India won the T20 WorldCup

This is a tech newsletter and those who have been part of this for years know that there is a theme attached to every newsletter. This time the theme is celebration!!

Today is 1st of July and we all have 6 months to shine, my personal goal from today will be to focus more on Kubesimplify and make its adoption easy. I am working on learning/creating content around:

• AI on Kubernetes
• More Wasm stuff
• More sustainability things
• More CNCF Projects
• End to end type of videos

I think this will make the adoption easy. I know that the first 6 months are over, so today is the right time to pause and do a check on what went well in the past 6 months, what didn’t go as planned and what changes can be done to make things smoother for the next 6 months so that the goals you set at the beginning of the year comes closer to completing each day.

INDIA WON THE T20 WORLD CUP and as cricket fan I enjoyed the thrilling final between India and South Africa. It was world class cricket played between both the teams and was so much joy to see India win the cup. Thank you Rohit and team for the beautiful memories.

Coming back to the tech stuff, I recently went to KCD Hyderabad and gave a Keynote on Supply chain security in 2024. I will be doing a deeper dive with Ram on this soon via below livestream on 11th July, so set your reminders.

I did a fantastic stream about the Kubestronaut program with my friends who are well known in the industry- James Spurin and Mumshad Mannambeth . I covers everything about the program, amazing resources and awesome Q/A. A Must watch if you are aiming for Kubestronaut.

Update on BuildSafe and Ksctl

BuildSafe is set to become an easy UX cli tool to build oci artifact that you can then use in your Dockerfile as your base image which is 0CVE and enable auto OS patching! How cool is that?

Ksctl is my default way of spinning up and tearing down clusters as I don’t want too many CLI’s.

We have good first issues open as well, do contribute if you want to get involved.

• Load balancing and scaling long-lived connections in Kubernetes - Kubernetes does not inherently load balance long-lived connections, leading to uneven distribution of requests across Pods. To manage this, consider client-side load balancing or using a proxy for protocols like HTTP/2, gRPC, RSockets, AMQP, or long-lived database connections.
• WebAssembly is still waiting for its moment - WebAssembly (Wasm) is a W3C standard that offers high performance and robust security, providing significant portability benefits. Despite its potential and usage in companies like Amazon, Adobe, and Google, Wasm has yet to achieve the widespread adoption and ecosystem maturity seen with technologies like virtual machines, JVM, and Docker containers. The community around it is rising fast.
• Taking a look at Kubernetes Profiling - Kubernetes enables profiling by default for key components like the API server, scheduler, controller-manager, and Kubelet, exposing performance data via pprof. While this feature aids debugging, it poses security risks, especially in managed clusters, and is generally recommended to be disabled in production environments unless explicitly needed.
• 6 Steps To Run Spin Apps on Your Kubernetes Cluster - explains how to run serverless WebAssembly workloads (Spin Apps) on Kubernetes using SpinKube in six steps: deploying SpinKube, creating a Spin App, distributing it as an OCI artifact, generating Kubernetes deployment manifests, deploying the Spin App, and invoking it.
• How LinkedIn moved its Kubernetes APIs to a different API group - LinkedIn migrated a major internal custom Kubernetes API to a new API group to improve design consistency and support future scalability. They built their own migration machinery, including a "mirror controller," to achieve this without downtime, allowing both the old and new APIs to run concurrently during the transition.
• The Vital Difference Between Machine Learning And Generative AI - Machine learning (ML) focuses on building systems that learn from data to make predictions or decisions, while generative AI creates new content such as text, images, or music. ML is used for predictive analytics and diagnostics, whereas generative AI is employed in creative domains and content generation, with both technologies complementing each other in various applications.
• On the Supply Chain Security Trail with Docker Scout - Docker Scout is a comprehensive supply-chain security tool for containers that goes beyond traditional vulnerability scanning by providing a holistic approach, including generating and monitoring Software Bill of Materials (SBOM) for compliance and offering recommendations for mitigations and improvements. Its integration with various platforms and detailed reporting, including vulnerability summaries and base image update recommendations, makes it a valuable resource for maintaining container security.

Awesome Repos/Learn from X

Do Subscribe for free of you like the edition and share your thoughts on supply chain security. What are you doing currently to create secure builds?