Top 23 Go Cncf Projects
Production-Grade Container Scheduling and ManagementProject mention: Need help debugging emptyDir volumes with init containers | reddit.com/r/kubernetes | 2021-10-15
It just seemed to me that this is something that should be available and I just don't know how to tell it to k8s correctly. As I read this thread, I see that I'm not the only one. But of course, if that is for some reason not the right solution, I'd adapt.
Run Kubernetes locallyProject mention: Kubernetes-based development with Devspace | dev.to | 2021-10-15
Or you can manually set up your own kind, minikube, or docker for desktop cluster.
Run Linux Software Faster and Safer than Linux with Unikernels.
The Kubernetes Package ManagerProject mention: Kubernetes-based development with Devspace | dev.to | 2021-10-15
Typically, our IAM service is a third-party like keycloak or fusionauth which we can easily deploy on Kubernetes by means of a helm chart. Helm is a very practical package manager for Kubernetes. For example, a typical fusionauth deployment would look like something along these lines:
An open source trusted cloud native registry project that stores, signs, and scans content.Project mention: How I Saved $5000/mo with a $5 Droplet | reddit.com/r/programming | 2021-10-05
I'm not sure what the benefit of doing this over just biting the bullet and hosting your own registry like harbor. Harbor will also replicate registries from other sites and also it's a fully functional registry by itself, for your own registry needs.
CNCF Jaeger, a Distributed Tracing PlatformProject mention: A practical tracing journey with OpenTelemetry on Node.js | dev.to | 2021-10-08
Let's talk about the exporter. Because OTel is an open standard, you can theoretically export to any tool that supports the OTel API. For example, there's a ConsoleExporter included that prints traces to the console, but that's not very useful. There's an exporter to Elasticsearch, and you can write your own library to export to a file or database or whatever. However, two of the most popular options are Jaeger and Zipkin, and you can easily run them locally with Docker.
Kubernetes Operations (kops) - Production Grade K8s Installation, Upgrades, and ManagementProject mention: Fully automated Kubernetes deployment on AWS using spot instances | reddit.com/r/kubernetes | 2021-09-10
Also, if I'm not gonna use EKS, AKS, GKE etc. I'd go with kops (https://kops.sigs.k8s.io/)
Vitess is a database clustering system for horizontal scaling of MySQL.
Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
Highly available Prometheus setup with long term storage capabilities. A CNCF Incubating project.Project mention: Introducing Parca -Open Source infrastructure-wide continuous profiling | reddit.com/r/golang | 2021-10-11
We put a lot of thought into the correlation story (whether with or without Grafana). We actually tried in our product first to have a Thanos cluster for storing metrics however, when metrics and profiles were distinct sources the correlation experience was frustrating as the PromQL query engine aligns timestamps, which caused that even if you clicked on a CPU or memory spike, you weren't guaranteed to actually open a profile from that spike. We needed to truly store and query these metrics differently for a smooth experience.
An open and reliable container runtimeProject mention: In an on-premise, non containerized context, what is the best way to deploy a Node.js app (artifact) to a server? | reddit.com/r/devops | 2021-10-15
Docker is one container environment, but it's not the only one, and you don't have to use Docker Desktop. It's ok and possibly even nice to have when you use Window, but containers are supported by CRI-O and containerd as run-times too. Kubernetes runs your containers too, so I fail to see any lock-in potential even.
Storage Orchestration for KubernetesProject mention: October 12th updates | reddit.com/r/OKD_Virtualization | 2021-10-12
- We are working with rook.io community getting rook-ceph operator to Community OKD/OpenShift Operators
CoreDNS is a DNS server that chains pluginsProject mention: Who do you use for your upstream DNS provider? | reddit.com/r/pihole | 2021-10-06
CoreDNS with Unbound
The toolkit to pack, ship, store, and deliver container contentProject mention: Docker desktop no longer free for large companies | news.ycombinator.com | 2021-08-31
> There's a standards conversion going on where we can trace the provenance of each and every layer of the image, we can start signing those layers, and with that metadata, we can start doing automated decisioning, automated reporting, automated visibility into what's been done to that image at each step of the lifecycle.
Docker's CEO is being disingenuous. When you deploy a Docker container, you specify the image ID. The ID looks like a SHA-256 digest and even starts with the string 'sha256' but it is an arbitrary value generated by the docker daemon on the local machine. The ID is not a hash of the image contents . In other words, docker images are not content-addressed.
Since docker images are not content-addressed, your image registry and image transfer tools can subvert the security of your production systems. The fix is straightforward: make an image ID be the SHA-256 digest of the image contents, which is the same everywhere: on your build system, image registry, test system, and production hosts. This fix will increase supply chain security for all Docker users. It is massive low-hanging fruit.
Now Docker will add image signatures without first making images content-addressed. Their decision makes sense only if their goal is to make money and not make a secure product. I cannot trust a company with such priorities.
Dragonfly is an intelligent P2P based image and file distribution system. (by dragonflyoss)Project mention: Can Kubernetes pre-pull and cache images? | reddit.com/r/kubernetes | 2021-07-06
A horizontally scalable, highly available, multi-tenant, long term Prometheus. (by cortexproject)Project mention: Processing large datasets from mongodb in realtime | reddit.com/r/golang | 2021-07-30
Not a lot to go on in your post, but you might find some inspiration from this project (written in golang) which handles huge data sets (metrics). https://cortexmetrics.io/
Kubernetes Native Edge Computing Framework (project under CNCF)Project mention: KubeEdge v1.7 is out now | news.ycombinator.com | 2021-06-01
A Chaos Engineering Platform for Kubernetes.Project mention: Chaos Mesh 2.0 GA: To a Chaos Engineering Ecology | dev.to | 2021-10-12
If you are interested in Chaos Mesh and would like to help us improve it, you're welcome to join our Slack channel or submit your pull requests or issues to our GitHub repository. Chaos Mesh looks forward to your participation and feedback!
Virtual Kubelet is an open source Kubernetes kubelet implementation.Project mention: Deploy on prem Kubernetes. What is the best approach paid and unpaid to deploy a cluster on premise with burst to azure/aws? The only need is the ability to have some static pods. I do have a preference for free/open source solutions. | reddit.com/r/kubernetes | 2021-09-25
I just stumbled upon this project a while back and don't have experience with it, so I don't know how well it works and what caveats you may face, but there's Virtual Kubelet, which aims to do just that, i.e. running a virtual Kubernetes node outside the cluster. Its Kip provider sounds like the thing you're looking for.
Notary is a project that allows anyone to have trust over arbitrary collections of dataProject mention: Notary is a project that allows anyone to have trust over arbitrary collections of data | reddit.com/r/coolgithubprojects | 2021-01-17
🐻 The Universal Service Mesh. CNCF Sandbox Project.Project mention: Powering Kubernetes in the Cloud with Kuma Service Mesh | dev.to | 2021-08-16
Another important change to make is that when you create the cluster, change the Nodes in the "Default pool" to use the COS (not COS_CONTAINERD) image type. There are some underlying issues when using Kuma with GKE, as noted in this GitHub issue, and this is the currently recommended workaround. Otherwise, you will hit pod initializing issues that affect certificate provisioning.
ChubaoFS (abbrev. CBFS) is a cloud native distributed file system and object store.Project mention: How are you managing NFS in K8s world? | reddit.com/r/kubernetes | 2021-07-15
A few weeks ago I took a peek at chubaofs and frankly didn't understand how to install it; but it claims to support RWX.
Gatekeeper - Policy Controller for KubernetesProject mention: Expose Open Policy Agent/Gatekeeper Constraint Violations for Kubernetes Applications with Prometheus and Grafana | dev.to | 2021-06-18
by default and exposes metrics on path ```/metrics``` . It can run locally on your development box as long as you have a valid Kubernetes configuration in your home folder (i.e. if you can run kubectl and have the right permissions). When running on the cluster a ```incluster``` parameter is passed in so that it knows where to look up for the cluster credentials. Exporter program connects to Kubernetes API every 10 seconds to scrape data from Kubernetes API. We've used [this](https://medium.com/teamzerolabs/15-steps-to-write-an-application-prometheus-exporter-in-go-9746b4520e26) blog post as the base for the code. ## Demo Let's go ahead and prepare our components so that we have a Grafana dashboard to show us which constraints have been violated and how the number of violations evolve over time. ### 0) Required tools - [Git](https://git-scm.com/downloads): A git cli is required to checkout the repo and - [Kubectl](https://kubernetes.io/docs/tasks/tools/) and a working K8S cluster - [Ytt](https://carvel.dev/ytt/): This is a very powerful yaml templating tool, in our setup it's used for dynamically overlaying a key/value pair in all constraints. It's similar to Kustomize, it's more flexibel than Kustomize and heavily used in some [Tanzu](https://tanzu.vmware.com/tanzu) products. - [Kustomize](https://kustomize.io/): Gatekeeper-library relies on Kustomize, so we need it too. - [Helm](https://helm.sh/): We will install Prometheus and Grafana using helm - Optional: [Docker](https://www.docker.com/products/docker-desktop): Docker is only optional as we already publish the required image on dockerhub. ### 1) Git submodule update Run ```git submodule update --init``` to download gatekeeper-library dependency. This command will download the [gatekeeper-library](https://github.com/open-policy-agent/gatekeeper-library) dependency into folder ```gatekeeper-library/library``` . ### 2) Install OPA/Gatekeeper If your K8S cluster does not come with Gatekeeper preinstalled, you can use install it as explained [here](https://open-policy-agent.github.io/gatekeeper/website/docs/install/). If you are familiar with helm, the easiest way to install is as follows: ```bash helm repo add gatekeeper https://open-policy-agent.github.io/gatekeeper/charts helm install gatekeeper/gatekeeper --generate-name
CLI for building apps using Cloud Native BuildpacksProject mention: New to kubernates, using Rancher/k3s, Need help deploying a python script to a container then to all my workers. | reddit.com/r/kubernetes | 2021-09-16
First, you need to package your python script into a container image. /u/Stephonovich has a sample `Dockerfile` in his comment which you can use build the container image with docker or other tools like podman and kaniko. You can also give Cloud Native Buildpacks a look - the "pack" command line can recognize you are using Python and create a container image automatically.
This is a Helm v3 plugin which migrates and cleans up Helm v2 configuration and releases in-place to Helm v3Project mention: 13 Best Practices for using Helm | dev.to | 2021-06-20
$ helm3 plugin install https://github.com/helm/helm-2to3
What are some of the best open-source Cncf projects in Go? This list will help you:
Are you hiring? Post a new remote job listing for free.