►
From YouTube: Cloud Native Live: Introducing Kubescape - open source tool to test Kubernetes deployment
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
A
Howdy
everyone
welcome
to
cloud
native
live
where
we
dive
into
the
code
behind
cloud
native,
I'm
taylor
dolezal
a
senior
developer
advocate
at
hashicorp,
where
I
focus
on
all
things:
infrastructure,
application,
delivery
and
developer
experience.
Every
week
we
bring
a
new
set
of
presenters
to
showcase
how
to
work
with
cloud
native
technologies.
They
will
build
things,
they
will
break
things
and
they
will
answer
your
questions
join
us
wednesdays
at
11
a.m.
Eastern
time
this
week
we
have
amir
here
to
tell
us
about
cubescape
an
open
source
tool
to
test
kubernetes
deployment
security.
A
This
is
an
official
live
stream
of
the
cncf
and,
as
such
is
subject
to
the
cncf
code
of
conduct.
Please
do
not
add
anything
to
the
chat
or
ask
any
questions
that
would
be
in
violation
of
that
code
of
conduct
and
basically,
please
be
respectful
of
all
your
fellow
participants
and
presenters
and
with
that
I'd
love
to
hand
it
over
to
amir
to
kick
off
today's
presentation.
Amir.
Take
it
away.
B
Thank
you
very,
very
much
tyler,
so
I'm
I
would
start
by
sharing
my
screen.
B
So,
thank
you
very
much
and
welcome
everybody.
I'm
going
to
talk
about
cubescape
if
you're
not
familiar
with
cubescape
keepscape
is
an
open
source
project
that
armor
released
and
we
maintain
it
together
with
you
guys
and
and
ladies
of
course,
and
and
and
I'm
going
to
share
a
very,
very,
very
short
presentation
kind
of
explaining
what
keepscape
is
and
why
we
developed
it
in
the
first
place
and
then
I'm
going
to
share
a
little
bit
on
what's
coming
next
and
then
we're
gonna,
deep
dive
and
I
will
go.
B
I
will
show
you
a
real
use
cases
of
how
to
use
it
and
what
you
can
get
out
of
it.
So.
B
Is
the
first
open
source
tool
that
scans
kubernetes?
According
oh
sorry,
according
to
a
multiple
frameworks,
the
idea
is
that
you
can
use
tubescape
to
scan.
I'm
sorry
for
that.
You
can.
You
can
use
cubescape
to
scan
your
cluster
and
you
can
use
your
cubescape
to
scan
yaml
files,
handling,
charts
and-
and
it
gives
you
a
really
really
nice
report
on
on
what
what
is
misconfigured
and
how
you
need
to
remediate
it.
B
B
We
have
over
five
15
000
developers
who
are
using
it
to
monitor
their
clusters,
and
you
can
see
the
the
name
of
the
company
and
persons
who
are
using
it,
and
I
think
that
it's
quite
obvious
why.
The
reason
is
because
misconfiguration
is
one
of
the.
B
A
B
Gives
you
today
in
in?
If
you
didn't,
try
it
you
could
you
I
urge
you
to
go
and
try
it's
free,
open
source
and
it
will
stay
free
and
open
source
forever,
and
it
gives
you
the
ability
to
scan
cluster
ml
files
and
help
charts.
It
has
multiple
frameworks
right
now.
We
support
a
miter
for
kubernetes
and
the
nsa
and
csa
frameworks.
B
It
can
be
inserted
to
your
ci
cd
pipeline
and,
as
I
will
show
you,
you
can
identify
drifts
from
a
one
scan
to
the
other
when,
when
you're
scanning
for
misconfigurations,
most
of
the
tests
that
that
are
being
done
are
very,
very
generic.
B
B
We
understand
that
we
are
part
of
an
ecosystem,
so
that's
why
it
is
integrated
into
cicd
pipelines
and-
and
I
will
show
you
how
easy
it
is
to
deploy
it
and
use
the
ui.
The
ui
is
super
friendly
and
super
easy
to
understand
and
work
with,
and
the
cool
part
is
that
you
don't
need
to
install
anything
on
the
cluster.
It's
just
copy
paste
run
and
it
works.
B
The
next
thing
that
we
are
going
to
develop
are,
of
course,
more
frameworks,
and-
and
this
is
where
I'm
I'm
kind
of
opening
a
request
to
you
guys
if
you
have
anything
that
that
any
framework
that
is
of
interest
for
you,
please
shoot
us
an
email
and
we
will
definitely
try
to
create
it
for
you
and
we
are
going
to
extend
the
capabilities
to
support
if
a
more
more
tests
or
controls
that
are
based
on
the
worker,
node
and
api
server
settings.
We
are
going
to
add.
B
B
We
are
going
to
introduce
slack
integration,
so
you
can
send
your
scan
results
to
your
slack
channels,
we're
going
to
add
recommendations,
meaning
that
when
you
look
at
the
exceptions,
sometimes
it's
hard
to
understand.
If
something
should
be
in
an
exception
or
not,
what
we
are
going
to
do
is
we
are
going
to
tell
you
hey.
This
is
a
normal.
B
B
Between
one
organization's
organization,
to
the
other,
and
and
this
is
where
we're
going
to-
let
you
set
it
according
to
your
specific
organization,
we
understand
that
risk
posture.
Misconfiguration
is
changing
over
time,
because
the
cluster
is
changing
over
time
and
we
want
to
show
you
the
major
changes
in
your
cluster.
So
this
is
the
inventory
information
we
are
going
to
show
you
in
the
graph,
which
I
will
show
you
in
a
second.
What
kind
of
big
stones
are
happening
inside
your
cluster,
like
a
new
namespace
or
a
new
deployment,
is
being
introduced.
B
The
last
thing
that
we
are
going
to
do
before
christmas
is
the
arba
graph.
B
So
this
is
the
near-term
roadmap
that
we,
hopefully
we
are
going
to
deliver
it
by
the
end
of
this
year,
and
then
we
have
the
long-term
in
roadmap,
where
we
are
going
to
again
add
more
frameworks,
because
this
is
the
gist
of
the
tool
to
give
a
lot
of
frameworks
for
a
misconfiguration,
we're
going
to
add
container
image
scanning
again
same
feedback
that
we
got
from
you.
B
We
are
going
to
integrate
the
kubernetes
audit
log
in
a
running
in
detection
policies
against
it,
we're
going
to
add
policies
that
that
will
be
instead
of
just
identifying
issues.
It
can
really
prevent
these
issues
from
occurring
and
the
last
thing
we
are
going
to
add
auto
remediation,
which
means
that
you
will
be
able
to
say.
If
I
have
this
issue,
please
remediate
it
for
me.
So
that's!
B
That's
the
presentation,
and-
and
I
finish
I
finish-
the
presentation
and
from
now
we
are
going
to
go
to
the
demo,
I'm
going
to
switch
over
to
my
browser.
So
I'm
going
to
share
in
my
browser
in
a
second.
B
B
I
set
the
threshold
to
be
70
and
this
is
the
threshold
that,
if
my
a
rescore
is
above
70,
sorry,
if,
if
my
my
score
is
above
70
percent,
I
can
con,
I
cannot
continue
and
if
it's
lower,
I
can
continue.
A
B
You
can
see
it
is,
it
is
failing
the
reason.
B
And
you
can
see
that
this
is
the
command
that
they
actually
ran
in
my
pipeline,
and
you
can
see
that
my
score
was
15
and
it
was
lower
than
70.
This
is
why
it
failed,
and
if
I
go
to
the
tasks,
you
can
see
the
different
controls
that
were
tested,
and
you
can
see
that,
for
example,
the
checkout
service
is
mapping.
The
host
has
a
host
pid,
which
is,
which
is
not
a
really
really
good
practice,
and
so
we
failed
the
pipeline
from
continuing.
B
Now.
If
I
go
back
and
I
run
it
and
now
I
will
set
the
threshold,
let's
say
to
be
50,
which
is
the
score
that
I
know
I'm
going
to
get
now.
It
will
work,
so
I'm
I'm
setting
it
to
50
and-
and
you
will
see
in
a
second
that
the
pipeline
succeeded
because
we
got
50
and
the
threshold
was
50.,
but
you
can
see.
A
B
The
same
tests
have
failed
so
now,
let's
go
to
my
cluster
and
see
how
my
cluster
looks
so
this
is
my
cluster.
It's
running
on
gke.
B
On
the
pods,
you
can
see
that
they
are
running
and
basically
what
they
what
we
did
here.
We
deployed
the
hipster
shop
application
by
google
and
you
can
see,
I
have
an
external
ap.
Please
don't
try
to
hack
it,
but
you
can
enjoy,
of
course,
connecting
connecting
to
it.
So
when
now
I'm
running
it-
and
this
is
my
front
end-
and
you
can
see
that
I
can
buy
things
for
christmas-
and
you
know
the
application
is
working
and
let's
say
that
I
want
to
scan
it.
B
Are
you
familiar
with
a
good
tool
to
check
it?
So
you
can
go
to
cubescape,
and
this
is
the
git
page
for
cubescape
and
you
can
you
can
see.
We
have
basically
all
the
information
you
need
here
and
some
of
it
in
the
documentation
that
I
will
show
in
a
minute
deploying
cubescape
is
just
taking
this
command
and
pasting
it
into
my
cluster
or
the
place
where
I'm
running
a
cube,
ctl
or
I
have
a
cube
cdl
installed
on,
and
in
this
case
it
will
be
here
and
now
it.
B
A
B
We
cannot
test
it
when
we
have
a
yaml
file,
but
we
can
test
it
when
when
it
is
deployed-
and
you
can
see
here
that
for
each
one
of
the
controls
it
will
give
you
a
status
if
it
failed
or
succeeded.
We
give
you
a
description
of
the
control
and
we
give
you
the
namespace
and
then
the
deployments
that
failed,
and
then
we
give
you
how
many
assets
we
scanned,
how
many
failed
excluded.
I
will
talk
about
exclusion
in
a
second
and
how
many
have
passed
at
the
end
of
the
report.
B
I
get
a
nice
link.
The
idea
is
that
I
can
send
the
reports
to
the
ui
to
our
ui
or
I
can
keep
it
in
the
cli
by
the
way.
We
have
a
lot
of
options
here.
So
you
know
customers,
users
who
are
savvy
on
privacy
and
can
use
things
like
keep
local
and
they
can
download
and
they
can
download
the
the
frameworks
and
run
it
without
any
object
being
or
result
being
uploaded
to
us,
and
you
can
read
everything
here
in
the
documentation,
which
is
quite
extensive
now
coming
back
here.
B
B
You
can
see
the
the
ui.
The
ui
is
quite
easy
to
understand.
I
I
ran
so
many
scans
today
because
of
the
this
demo.
You
can
see
them
here,
a
group,
but
usually
people
do
not
run
in
as
many
scans
as
I
did
in
one
day
you
can
see
the
graph,
so
you
can
see,
for
example,
that
in
my
case,
the
trend
and
my
risk
is
going
up,
which
is
not
good.
B
I
would
prefer
that
my
risk
would
go
down
and
you
can
see
here
that,
since
I
ran
a
lot
of
tests,
it
went
up
and
down
and
up
and
down
you
can
see
that
you
have
a
score
for
each
one
of
the
frameworks
and
we're
telling
you
how
many
controls
failed
out
of
how
many
tests
that
you
have
in
the
next
release.
B
If
it
failed,
you
can
see
the
control
id
and
when
you
click
on
it,
you
get
a
detailed
documentation
telling
you
which
framework
it
is
running
the
description,
the
related
resources
that
we
are
scanning
in
order
to
to
see
if
this
control
passing
or
failing
and
what
we
test
exactly
the
remediation
and
soon
we
are
going
to
have
examples
here
that
will
show
you
what
is
a
good
setting
versus
a
bad
setting.
B
We
have
a
description
again
of
the
control
and
the
remediation
of
the
control.
Now,
since
we're
running
tests
scans,
you
can
see
all
the
different
scans
that
you
did
and
you
can
jump
and
see
these
scans
and
review
them,
and
we
always
compare
it
to
the
previous
scan.
B
B
So
I
can
always
compare
it
and
I
can
always
compare
it
now.
Let's
say
I
want
to
see
which
resources
fail.
So
I
can
click
here
and
I
can
see
the
namespace.
B
B
It
will
be
based
on
a
specific
resource
and
I'm
going
to
show
exceptions
in
a
second
and
let's
say
that
the
this
deployment,
the
checkout
service
should
be,
should
have
these
settings
in.
In
our
case,
I
can
set
it
as
an
exception
and
once
I
set
it
as
a
as
an
exception
and
I
run
scan
I'm
going
to
scan
it
again,
then
it
will
take
me
in
a
few
seconds.
B
A
A
Or
okay
cool
one
thing
that
came
in
was
kubernetes
audit
logs.
It
would
be
amazing
to
have
them
out
of
gke
and
then
a
follow-up
question
was:
is
there
any
kind
of
specific
configuration
to
scan
gke
clusters.
B
So
we
can
right
now.
What
we
do
is
we
we
are
connecting
to
the
to
keep
ctl
and
we
can
get
all
the
objects
that
the
api
server
exposes
in
the
coming
releases.
We
are
going
to
have
specific
integrations
with
gke
and
aks
and
eks
and
and
again,
if,
if
someone
from
the
audience
would
like
to
contribute
this
code,
we
will
be
more
than
welcoming
it
did.
A
This
answer
the
question:
taylor
yeah,
I
think
so.
If
if
there
is
any
more
follow-up,
please
feel
free
to
ask
and
twitch,
and
I
can
relay
that.
I
had
a
few
more
quick
things
and
then
definitely
let
you
get
back
to
your
demo.
One
one
person
remarked
that
I
get
an
error
when
I
try
to
buy
something,
can
we
debug
it?
So
I
can
order
a
hairdryer
today.
A
I
thought
that
was
a
good
one
and
then,
and
then
canines
rules
definitely
agree
to
that
and
and
then
a
final
comment
was.
I
can
never
remember
how
to
navigate
inside.
I
always
get
stuck
inside
of
a
namespace
looking
at
jobs
instead
of
pods
or
something
in
reference
to
canines,
but
looks
like
that
is
all
the
commentary
right
now.
But
if
you
do
have
any
more
questions,
please
feel
free
to
throw
those
into
chat
and
I'll
ask
them
to
mirror.
But
with
that
amir
I'd
love
to
throw
back
to
you.
A
B
B
B
So
if
we
go
to
our
git,
you
can
see
that
we
and
we
have
an
example
for
a
for
that
as
well.
B
So
you
can
see
that
it
has
the
exclude
namespaces,
but
we
also
have
the
ability
to
do
the
same
exclusion
as
they
did
in
the
ui,
and
we
can
do
it
also
in
the
cli,
and
so
we
have
the
exception
json
in
in
this
case,
what
I'm
telling
my
cubescape
is:
don't
scan
these
specific
namespaces
when
I'm
running
the
nsa
framework
and
basically
right
now,
it's
a
part
of
the
grid,
and
you
can
you
can
see
it
there.
A
B
A
All
right,
please
feel
free
to
ask
any
questions
in
the
chat
I
can
get
those
asked
it
looks
like
right
now
we
don't
have
any,
but
I
I
definitely
have
a
few
on
that
front,
so
cubescape's
a
really
interesting
tool.
I
I
heard
about
it.
You
know
just
before
the
session
and
got
to
check
it
out.
I
thought
that
was
quite
interesting.
A
B
So
we
we
we've
been
doing
posture
for
a
while
and
we've
we've
been
developing
it
for
our
own
use
and
when
we
saw
the
nsa
and
we
we
were
kind
of
thinking
about
how
we
we
need
to
release
it
as
part
of
the
product,
our
product
and
then
and
then
we
saw
that
the
nsa
released
the
hardening
guide
for
a
kubernetes.
B
And
we
thought
that
it
would
be
a
good
idea.
And
you
know
we
saw
the
buzz
around
it
and
we
thought
it
would
be
a
good
idea
to
contribute
it
to
the
community,
like
other
project
projects
like
a
project
that
scans
the
cis
benchmark
or
other
frameworks.
B
B
B
Industry
in
a
tech,
world
people
are
super
occupied
with
a
lot
of
stuff,
and
they
are
really
really
appreciative
when,
when,
when
you
create
these
controls
for
them-
and
they
can
just
easily
run
it
and
enjoy
the
value
out
of
it
and
and
and
now.
A
Interesting
interesting,
thank
you
so
much
yeah,
it's
one
of
my
personal
curiosities,
is
always
to
hear
about
where
the
tool
came
from
and
kind
of
what
that
motivation
was
to
create
that
or
donate.
That
or
kind
of
you
know,
work
with
that.
So
thank
you.
Thank
you.
When
it
comes
to
some
of
the
happy
paths
for
scanning
and
things
that
might
not
be
as
optimal
with
scanning,
are
there
any
systems
or
instantiations
of
kubernetes
that
make
this
easier
to
work
with
or
more
difficult
to
work
with.
B
So
yeah
so
right
now
we
look
at
kubernetes.
So
probably
I'm
not
sure
if
it
will
work
on
fargate,
probably
not
so
so
it
will
work
on
any
distribution
of
kubernetes.
As
long
as
you
have
the
permissions
to
run
the
the
controls,
so,
for
example,
if
if
we
have
a
control
that
needs
service
accounts
or
to
check
your
service
account
configuration,
if
you
don't
have
the
rbok
privileges
for
service
account,
this
specific
control
will
fail,
but
other
than
that.
B
B
I
think
that
one
of
the
feedbacks,
the
early
feedbacks
that
we
got
from
the
community
was
that
for
them
it's
super
cool
to
run
cubescape,
because
it
doesn't
require
any
installation,
and
so
you
know
they
can.
They
can
run
it
as
they
did
a
few
minutes
ago.
It's
easy,
it's
easy
to
understand
you.
Can
you
can
register
and
enjoy
the
ui?
The
ui
is
super
simple.
B
You
can
you
can
and
make
it
and
adjust
it
to
your
organization
and,
and-
and
we
are
you
know-
we
are
very
responsive
on
git,
so
you
know
people
that
open
git
issues
with
us.
We
we
answer
maximum
12
hours
and
that's
because
most
of
our
development
team
is
in
israel
and
and
many.
A
A
Gotcha
gotcha
gotcha.
Thank
you
so
much.
We
had
another
question
come
in
that
asked.
Is
it
working
in
an
air-gapped
environment
yet.
B
Yes,
so
so
I
I
started
to
mention
that
and
and
please
follow
the
the
the
documentation
that
we
have.
Basically,
what
you
can
do
is
you
can
use
cubescape
and
everything
is
written
here
in
the
documentation.
I
don't
want
to
repeat
it.
B
A
A
Nice,
nice
good
to
know.
I
need
to
try
that
out
with
some
of
my
raspberry
pi
clusters
that
I
have
here
at
my
house
that
haven't,
I
haven't
connected
to
the
wi-fi
yet
so
be
a
good
test
for
for
an
air
gap.
Setup.
A
Cool
one
of
the
things
that
you
went
through
were
some
of
the
recommended
ways
to
run
cubescape,
and
you
know
you
had
talked
about
a
helm
chart.
You
have
that
ability
to
kind
of
you
know
run
that
from
the
shell.
Are
there
any
thoughts
around
kind
of
like
what
the
recommended
way
for
most
contexts
might
be
for
running
this
tool?
Is
it
via
the
shell
and
like
an
operator
typing
it
out,
or
is
it
a
helm,
chart
or
a
scheduled
run
or
anything
like
that?.
B
B
Our
ci
cd,
so
you
know
we,
we
are
100
kubernetes
company,
all
the
all
the
things
that
we
do
all
our
back
end
is
running
on
kubernetes,
so
we
use
cubescape
in
our
ci
cd
pipeline
to
identify
these
configurations
that
might
happen
to
us
as
well,
and
so
you
know
eating
our
own
dog
food
and
and
then
and
then
we
scan
the
cluster
the
clusters,
using
a
crown
job
and
in
our
devops
engineer
and
he's,
is
watching
it
on
on
a
daily
basis,
soon
he's
going
to
have
it
in
slack.
A
B
Appreciative
on
that,
so
you
know
that's.
A
Cool
cool
yeah.
Thank
you
so
much
I.
I
know
that,
the
more
and
more
that
I
learn
about
technology
and
the
more
that
I
stay
in
the
industry.
I
keep
finding
myself
saying,
hearing
somebody's
problem
and
then
answering
back
with
well.
That
depends,
and
I
find
that
that's
a
far
more
common
answer
than
I've
ever
expected.
So
it's
it's
difficult
to
get
the
contexts
correct,
and
it's
really
important
to
realize
that
everything
is
trade-offs.
Nothing
is
a
hundred
percent
good
or
100
bad
they're,
just
different
considerations
to
think
through
and
that's
can
be
difficult.
A
Speaking
of
that,
do
you
have
any
interesting
stories
around
vulnerabilities
that
you
found
either
personally
like
things
that
were
surprising
or
any
that
you've
heard
from
people
using
this
tool
that
they
didn't
expect
or
were
just
like?
Oh
my
gosh,
I
you
know
had
no
idea.
This
was
a
vulnerability.
B
That
we
we
decided
as
a
company,
we
decided
that
we
want
to
be
always
to
try
to
be
the
first
ones
to
add
to
cubescape
information
on
new
vulnerabilities.
B
Example,
last
thursday,
this
vulnerability-
you
can
see
it
here
on
the
screen,
was
published.
Oh,
I
think.
A
You
can't
I,
I
muted
your
screen
and
so
can't
can't
see
that
unless
you've
shared.
B
Okay,
so
so
so
last
thursday
the
nginx
vulnerability
was
disclosed.
B
A
B
Everyone
knows
the
engineering's
vulnerability,
but
basically
nginx
has
a
very,
very
strong
service
accounts
tied
to
it
and
in
some
conditions
you
can,
you
can
expose
this
service
account
and
get
the
access
to
secrets,
etc,
etc.
So
so
it
was
disclosed
on
thursday
evening,
israel
time
probably
morning,
u.s
time
or
a
west
u.s
time
and
on
friday
lunch
time
and
we
released
cubescape
with
a
version
that
has
the
ability
to
test
your
cluster
against
this
vulnerability.
B
It's
super
important
for
us
to
give
the
users
the
ability
to
understand
if
they're
running,
something
which
is
vulnerable,
and
yesterday
I
tend
to
have
I'm
the
vp
pro.
I
have
introduced
myself,
I'm
the
vp
product
of
armor
and
I
talk
with
users
from
time
to
time.
I'm
the
person
who's
nagging
the
user.
Now
I'm
kidding,
I'm
the
person
who's
contacting
the
users
asking
them
to
give
us
feedback
to
give
us
the
direction.
How
can
we
help
them?
B
B
He
didn't
want
to
tell
me
exactly
which
vulnerabilities,
but
you
know
he
told
me
that
he
he
ran
it
and
he
found
vulnerabilities
and
you
know
it's
it's.
It
always
makes
you
happy
that
you
created
something
that
gives
so.
I
hope
it
answered
your
question.
A
Absolutely
absolutely-
and
I
think
that
that's
that
really
does
make
a
difference
being
able
to
see
that
and
nothing
feels
better
too
right
than
being
able
to
see
that
there
are
40
issues
and
you
bring
that
down
to
18
or
two
or
zero.
That's
that's
always
a
good
feeling
on
that
front
and
we
got
your
screen
sharing
again.
A
So
you
should
be
good
on
that
front
if
there's
anything
that
you
want
to
go
through
awesome
with
that,
if
anyone
else
has
any
questions
that
they'd
like
to
go
through,
please
feel
free
to
share
on
that
front
and
then,
if
there's
anything
that
you're
excited
about
with
the
project,
I
know
in
your
slides,
you
had
kind
of
talked
about
some
of
the
things
that
were
next
up
for
the
project
amir
it.
A
A
Yes,
I
I
see
your
browser
and
the
restream
tab.
A
No
worries
I
feel
like
that's
still,
despite
all
that,
we've
been
through
around
the
world,
streaming
is
still
one
thing
that
we're
always
trying
to
work
out.
The
ux
on.
A
I
I
don't
see
it
now,
but
but
no
bother.
If
that
doesn't
come
up.
B
So
you
know
personally,
I
I
like
the
road
map.
I
created
it
together
with
the
with
the
users
I've
been
talking
to,
but
I
think
that
the
the
part
that
is
really
really
interesting
for
me
is
the
fact
that
we
are
going
to
add
more
controls
and
put
them
in
in
different
frameworks,
and
you
will
be
able
to
run
any
framework
that
you
want.
So
you
don't
need
to
go
and-
and
you
know.
B
So
you
know
it's
like
asking
when
you
ask
me
what
is
my
favorite
feature
in
the
road
map?
It's
like
asking
a
father
which
son
he
likes
the
most.
A
That's
it's
so
true.
It's
I
know
that
I've
I'm
the
eldest
of
three
and
I
know
my
siblings,
and
I
would
always
ask
our
parents,
you
know
who's
who's,
the
favorite
and
they
would
never
give
an
answer
which
is,
which
is
the
best
answer.
Exactly
that's
funny
that
there's
that
also
reminds
me
one
of
my
favorite
comic
strips
that
oh
and
I'll
go
ahead
and
put
that
in
chat
for
those
of
you
that
have
seen
it
you'll
you'll.
A
Remember
that
the
standards
xkcd
comic
where
it
starts
off,
saying
there
are
14
competing
standards
and
then
somebody's
just
like
we'll
come
up
with
one
to
unite
them
all.
There
are
15
competing
standards,
and
it's
just
kind
of
illustrating
how
difficult
it
can
be
to
kind
of
get
everyone's
buy-in
and
kind
of
make
things
happen
on
that
front.
So
again,
you
know
the
whole.
It
depends.
A
Trade-Offs
makes
it
difficult
to
kind
of
come
to
agreements
on
that
front
and
thank
you
for
working
on
such
a
cool
tool
to
help
bring
all
these
things
together
because,
like
you
said
you,
it's
might
be
easier
to
go
kind
of
like
with
the
cis
standards
or
you
know
whatever
it
might
be,
but
when
it
comes
to
actually
getting
an
understanding
of
what
your
entire
security
perspective
looks
like
it's
helpful
to
have
all
of
these
to
take
a
look
at
and
to
benchmark
your
clusters
against.
So
so,
thank
you.
B
Exactly
and
and
again
we
are
very
open
to
feedback,
and
if
you
have
anything
just
you
know,
drop
it
on
on
on
git
or
on
our
discord
channel.
We
have
a
discord
channel,
we're
constantly
watching
it.
We
have
a
and
we
have
a
developer,
a
channel
there,
announcement
channel
there.
So
you
know
you
can
register
to
our
discord
in
and
be
part
of
the
community.
B
We
we
are
very
focused
on
cubescape
and
making
it
better
for
your
youth.
So
you
know
it's,
we
we
create
it
for
you
and-
and
we
need
you
to
be
with
us
on
that.
A
Absolutely
and
I'm
honestly
curious
to
hear
any
of
your
use
cases
or
stories
or
kind
of
things
that
develop
from
that
too.
So,
please
feel
free
to
share
those
I'd.
Be
very
curious
to
hear
awesome.
I
have
one
more
question,
but
we
do
have
a
few
more
minutes.
So
if
there
are
any
questions
that
you
want
to
get
answered,
please
feel
free
to
throw
those
into
the
chat.
Otherwise
we
can
get
things
kind
of
closed
out
and
I'll
give
you
some
time
back
the
so
drawing
to
the
end.
A
One
of
the
questions
that
I
always
like
to
ask
is
how
what's
the
best
way
to
get
involved
with
the
project
and
contribute
in
meaningful
ways.
You
know
whether
it
be
documentation
or,
if
there's
a
certain,
if
there's
a
certain
perspective
or
or
set
of
features
that
you're
trying
to
add
what
are
some
of
the
ways
that
people
can
most
beneficially
getting
get
involved
for
the
project.
B
So
we
we,
if
you
look
at
our
git
and
there
are
some
issues
that
we
marked
as
we're
asking
people
to
help
us
in
in
and
contribute
the
code
to
so
you
know
we,
we
constantly
watch
our
gate
and
and
we're
very,
very
active
on
that.
So.
B
B
Did
pigeons
fly
over
the
atlantic
ocean?
I
don't
know
but
anyway,
so
we
we
can.
We
can
definitely
jump
on
any
medium
in
the
soviet
and
we
do
appreciate
help
so
yeah.
But
let's.
A
Fantastic
excellent,
well,
thank
you
so
much
I
did
have
to
see
one
more
question
come
in.
Will
there
be
support
for
cis.
B
A
Awesome
we
had
another
comment
that
said:
support
for
rfc
25
49
is
important,
but
I'll
definitely
have
to
read
up
on
that
one.
I'm
not
sure
that
one
offhand.
A
Absolutely
I'll
go
ahead
and
put
that
in
the
in
our
chat.
But.
A
Oh,
I
I
p
over
avian
carrier.
Yes,
absolutely
sorry,
it
didn't
make
that
didn't
make
the
correlation.
That's
funny!
That's
funny!
Yeah
I'd
with
talking
about
data
transfer
and
everything
on
that
front.
There's
a
I.
I
worked
for
a
previous
company
where
we
did
talk
a
lot
about
data
transfer
and
kind
of
the
rate
at
which
it
would
be
faster
to
kind
of
load
it
up,
either
on
a
usb
device
or
a
big
hard
drive
and
actually
like
drive
it
ship.
A
A
Okay,
awesome.
Well,
I
think
those
are
all
the
questions
that
we've
had.
Thank
you
so
much
amir.
Thank
you!
Everyone
for
joining
the
latest
episode
of
cloud
native
live.
It
was
great
to
hear
from
amir
about
cubescape
and
different
ways
that
you
can
test
your
kubernetes
deployments.
We
also
really
loved
the
interaction
and
questions
that
we
got
from
everyone
in
the
audience
and
don't
forget
that
we
bring
you
the
latest
cloud
native
code
every
wednesday
at
11
a.m.
A
Eastern
time
next
week
we'll
have
karen
chu
and
kent
rancourt
presenting
so
what's
new
in
brigade2.