►
Description
Don’t miss out! Join us at our upcoming hybrid event: KubeCon + CloudNativeCon North America 2022 from October 24-28 in Detroit (and online!). Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: CNCF Project Updates - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
A
C
C
Chaos
mesh
is
an
open
source
cloud
native
chaos,
engineering
platform
chaos.
Mesh
now
has
two
new
versions:
2.0
and
2.2,
with
over
60
adopters
chaos.
Mess
also
supports
jvm
chaos
and
http
chaos
and,
after
their
release,
have
been
integrated
by
multiple
doctors.
Already
the
chaos
mesh
team
is
developing
a
daily
reporting
system
for
chaos
mesh
to
improve
their
system
resilience.
C
A
lot
of
these
changes
within
chaos
mesh
show
the
possibility
of
self-service
and
cloud
native,
such
as
when
an
adopter
built
their
own
application
for
better
observation
using
chaos,
mesh
and
then
wrote
a
tutorial
on
it.
This
is
exactly
the
kind
of
type
the
type
of
community
they
were
hoping
to
build.
C
K
native
is
an
open
source
enterprise
level
solution
to
build
serverless
and
event
driven
applications
on
kubernetes
and
they've
now
reached
version
1.0.
One
of
their
major
adapters
is
an
emerging
company
in
the
supply
chain,
security
space
that
is
using
k-native
as
an
instrumental
component
of
their
engineering
platform.
C
Argo
has
had
a
razor
sharp
focus
on
security
that
goes
back
for
more
than
six
months,
leading
to
better
documents,
better
best
practices,
a
hardened,
more
robust
and
reliable
code
base
with
several
process
enhancements,
a
lot
of
which
was
driven
from
their
security
audit.
These
changes
make
it
easier
for
existing
users
to
understand
and
implement
the
new
features
and
recommendations
from
the
project
with
argo
cd
2.3.
C
They
included
an
agnostic
notifications,
engine
and
several
other
enhancements,
so
it
can
be
used
by
any
cloud
native
application
and
since
october
they
found
that
more
than
50
percent
of
users
are
already
using.
Many
of
these
new
features
with
a
lot
of
these
projects.
Your
feedback
and
contributions
are
what
drive
such
great
changes
so
be
sure
to
contact
those
maintainers
flux
is
a
set
of
continuous
and
progressive
delivery
solutions
for
kubernetes
that
are
open
and
extensible.
C
Large
private
and
public
companies
are
seeing
the
benefits
of
flux
and
visual
studio
code,
which
serve
as
the
starting
point
to
improve
velocity
with
flux,
resources
and
actions
concentrated
within
the
ide.
They
recently
had
an
excellent
joint
blog
post
from
flux
and
hashicorp
vault.
I
encourage
you
all
to
check
it
out
on
their
repo
and
learn
how
to
contribute
to
this
project.
C
Longhorn
is
a
lightweight,
reliable
and
powerful,
distributed
block
storage
system
for
kubernetes
a
new
incubating
project.
Longhorn
release
version,
1.2.4
improves
scalability
on
volume,
number
high
cpu
consumption
by
volume,
incidence
managers
and
so
much
more
check
out
the
release,
notes
on
their
github
repo
they're,
seeing
adoption
by
other
open
source
projects
too,
as
storage
back-end
by
using
backing
image,
functions,
volume,
cloning,
backup
and
restore,
and
so
many
other
features
that
were
introduced
in
version
1.2.
C
Openshift
telemetry
has
had
a
wave
of
generally
available
release
candidates
launching
this
week.
This
is
a
massive
milestone
for
the
project
and
fulfills
the
project's
original
promise.
This
is
a
monumental
moment
for
them
and
deserves
significant
attention.
Open
telemetry
staging
functionality
is
incredibly
well
adopted
across
the
industry
and
is
used
in
production
at
major
firms.
With
such
great
milestones
for
this
project,
they've
made
it
easy
and
ubiquitous
to
capture
distributed
traces
and
metrics
from
services
and
infrastructure.
It's
a
great
time
to
try
it
out.
C
The
version
1.7
release
includes
resiliency
policies
that
significantly
aid
developers
and
building
reliable,
distributed
applications
providing
retries
time
out
and
circuit
breakers.
We
highly
recommend
checking
out
the
dapper
community
and
contributing
to
one
of
the
few
non-infrastructure
focused
cncf
projects.
A
A
Recent
initiatives
in
this
project
include
the
proxy
proxy
last
mesh
security,
grpc
observability,
as
well
as
proxy-less
grpc
service
mesh
with
istio
adopters
of
the
project
are
reporting
having
to
stop
caring
about
regions
or
clusters,
and
thinking
only
about
the
logical
names
and
the
identity
of
their
services.
The
recent
releases
also
include
mtls
workload.
Certificates
on
gke,
which
enhance
access
control
grpc,
is
the
glue
between
your
applications.
A
Next
is
cloud
events.
Cloud
events
is
a
specification
for
describing
event
data
in
common
formats,
improving
interoperability
across
services,
platforms
and
systems.
The
initiatives
recently
initiatives
in
this
project
include
the
1.0
release
of
protobuf
and
the
draft
draft
of
xml
chinese
translations
for
all
the
specifications
and
new
specifications
to
complete
the
full
life
cycle
of
eventing.
A
A
Recent
initiatives
in
this
project
include
the
introduction
of
the
hybrid
helm
plugin.
The
java
quark
is
allowing
for
the
development
of
java
operators
and
a
new
sdk
that
improves
the
support.
In
air-gapped
environments,
the
stack
rocks
community
has
been
key
for
the
development
of
the
hybrid
helm
plug-in,
and
this
actually
made
it
to
release
1.17.
A
The
sdk
in
the
project
is
asking
for
plug-in
developers
for
pl
new
plug-in
developers
and
the
olm
is
requiring
help
to
drive
the
rook.
The
new
api
called
rootback.
A
A
The
adoption
of
second
by
default
and
performance
of
optimizations
that
open
up
the
usage
of
the
project
in
edge
use
cases,
release
1.24
brought
second
by
default.
As
I
mentioned,
and
this
is
a
preparation
for
what's
upcoming
in
kubernetes
1.25
with
the
removal,
the
recent
removal
of
the
docker
shim
in
kubernetes,
the
project
is
reaching
out
to
to
people
to
try
out
cryo
for
their
cri
implementation.
A
Next,
we
have
falco
falco
makes
it
really
easy
to
consume
kernel
events
integrating
with
the
cloud
native
stack.
It
also
provides
a
very
rich
set
of
security
rules
built
for
kubernetes
linux
and
cloud
native
in
some
news
from
this
project
include
a
new
plugin
system,
extending
it
beyond
runtime
security
and
gearing
the
project
towards
cloud
security
and
big
stability
and
performance
improvements
that
give
it
also
give
it
to
better
ebpf
support
and
many
other
improvements
that
you
can
check
on
their
website.
A
The
release
0.31
adds
all
of
this
and
also
aws
cloudtrail
events
and
a
go.
Sdk
falco
calls
for
new
contributors
to
extend
the
plugins
and
the
integration
ecosystem,
and
they
really
believe
this
will
be
a
game
changer.
Next
we
have
nats.
This
is
a
cloud
agnostic,
connective
fabric,
allowing
you
to
bridge
between
kubernetes,
bare
metal,
virtual
machines
and
low
resource
hardware.
Initiatives
in
the
project
include
materialized
views
with
a
key
value
and
object
store
access
assets
moving
assets
in
real
time
with
zero,
downtime
and
predictable
memory
usage.
A
B
All
right
so
the
home
stretch
the
graduated
project
updates,
so
these
projects
have
reached
the
cncf
defined
criteria
of
maturity,
which
includes
things
like
rate
of
adoption
and
longevity.
Let's
start
with
envoy
envoy,
just
introduced
envoy
base
ingress
and
the
api,
a
gateway
to
build
contour
and
emissary
into
the
project.
B
This
will
help
reduce
redundant
work
that
is
happening
in
cloud
native
community
and
set
up
envoy
to
be
a
much
stronger
out
of
the
box
for
applica
out
of
the
box
for
application
and
platform
teams,
users
of
contour
emissary
and
kubernetes,
who
want
an
api
gateway
in
ingress.
The
project
invites
you
to
contribute,
also
be
on
the
lookout
for
a
blog
post
about
this
work
from
the
envoy
team
here
at
pubecon,
all
right
jaeger.
So
if
you're
not
familiar
with
this
tool,
it's
a
scalable
platform
for
collecting
processing
and
visualizing
debt
distributed
traces.
B
Some
initiatives
included
here
are
adaptive
sampling,
which
means
that
the
jager
back-end
can
be
configured
to
perform
fully
automated
dynamic
control
of
sampling
rates
based
on
the
predefined
targets.
Service
performance
monitoring
is
a
new
tab
in
the
jaeger
ui
that
allows
identifying,
slow
or
otherwise
unhealthy
services
and
endpoints
through
aggregate
analysis
of
traces.
B
The
prometheus
agent
enables
prometheus
to
run
more
efficiently
when
more
storage
is
needed,
we
can
move
on
that
yeah
repeat
next
slide.
Thank
you
all
right.
That
was
a
repeat
slide
so
link
or
d.
So,
if
you're
not
familiar
with
link
or
d,
it's
the
fastest
lightest
and
simplest
service
mesh
for
kubernetes
and
it's
powered
by
a
unique
rust
based
micro
proxy.
Some
updates
for
this
project
are
the
newly
launched
cross
cluster
failover.
B
This
feature
gives
linker
d
the
ability
to
automatically
redirect
all
traffic
from
a
failing
or
inaccessible
service
to
one
or
more
replicas
of
that
service.
This
includes
replicas
on
other
clusters.
The
project
also
recently
passed
an
external
security
audit
congrats
to
the
team.
We
encourage
you
to
check
out
the
talk
that
xbox
is
giving
at
this
very
kubecon.
B
B
This
reduces
right
bandwidth
by
30
percent,
which
makes
tick
v
a
more
cost
effective
solution
on
the
cloud
adaptive
write
flow
control
is
based
on
the
engine's
pending
works
was
also
introduced,
write
works
smoothly
now
and
especially
on
the
cloud
disk.
Lastly,
pessimistic
transition
transactions
are
now
20
faster
in
the
tool.
B
Tough,
this
slant.
This
stands
for
the
update
framework
and
it
is
a
framework
for
the
secure
content,
delivery
of
updates.
It
protects
against
various
types
of
supply
chain
attacks
and,
in
contrast
to
many
other
systems,
provides
resilience
to
compromise.
The
first
initiative
I
like
to
cover
is
the
python
tough
refactor.
This
has
resulted
in
a
much
smaller
code
base
that
is
easier
to
maintain.
This
has
also
resulted
in
a
much
more
ergonomic
api
that
is
easier
to
use
the
refactor,
fully
utilizes
modern
language
features
like
type
annotations,
etc.
B
The
next
initiative
is
the
revitalization
of
gotough.
This
has
meant
more
maintainers
from
diverse
organizations
like
datadog,
google,
nyu
and
vmware.
This
initiative
is
also
considering
future
enhancements
inspired
by
python.
Tough
next
is
the
tough
augmentation
proposals.
Aka
tap.
The
increased
activity
in
tap
15
is
to
drastically
optimize
file
size
when
using
hash
bin
delegation.
This
is
very
important
for
a
large
community
repository
such
as
pi,
pi
or
pep458,
as
tough
grows
in
significance
in
scope,
so
do
the
opportunities
to
engage
with
the
project.
B
B
Rook
rick
is
an
open
source
cloud
native
storage
operator
for
kubernetes,
providing
the
framework
and
support
for
staff
to
natively
integrate
with
kubernetes.
The
main
achievement
is
to
shout
out
that
they
have
recently
released
rook
version
1.9
with
many
feature
additions
and
improvements,
including
support
for
staff
quincy.
The
most
recent
version
of
sev,
as
storage
continues
to
evolve.
Rook
continues
to
make
critical
improvements
to
support
the
storage
needs
of
the
community
working
closely
with
the
ceph
community.
They
take
pride
in
delivering
much-needed
cloud-native
storage
platform
for
clusters,
whether
running
on-prem
or
with
cloud
providers.
B
Given
this
big
release,
the
team
mainly
wants
to
hear
feedback
about
its
impact
on
the
community,
so
you
can
reach
out
to
them
today,
helm
it's
a
widely
adopted
package
manager
for
finding
sharing
and
deploying
apps
on
kubernetes.
The
first
update
is
for
oci
registry,
so
this
is
support
for
charts
that
is
now
generally
available.
It
has
graduated
out
of
being
an
experiment
and
since
oci
artifacts
it
now
makes
it
possible
to
store
more
than
container
images.
You
can
store
charts
images,
other
artifacts,
all
in
a
single
oci
registry,
sharing
a
common
storage
standard.
B
That's
not
specific
to
home,
allows
greater
interoperability
between
tools
from
the
wider
container
ecosystem
for
security,
identity
and
access
management
and
more
oci
support
has
been
one
of
the
most
requested
features
for
home
over
the
past
several
years.
Many
end
users
have
begun
have
begun
to
rely
on
oci
support
even
before
it
came
out
of
experimental
status,
while
other
large
organizations
were
eagerly
awaiting
general
availability.
B
B
The
helm
team
regularly
gets
questions
from
people
who
want
tools
or
methods
to
manage
their
home
releases
declaratively.
So
they
wrote
a
blog
post
that
shares
some
of
the
insights
and
provides
direction
to
help
people
get
started.
You
can
check
it
out
on
home.sh,
contribute,
come
visit,
the
team
at
the
project
booth
and
find
out
more
information
about
helms
helm
summit,
which
is
coming
soon
all
right.
B
That's
all
the
updates
for
now,
but
wouldn't
it
be
great
to
see
your
contribution
up
here
next
time,
as
you
can
see,
contributors
are
needed
all
around
within
the
various
projects.
So
we
encourage
you
to
get
involved
by
reaching
out
to
the
project
teams
and
we'll
see
you
next
time
for
project
updates
in
n
a
yeah
thanks.
Thank.