What's next for cloud-native computing?
Content from KubeCon and EnvoyCon videos 2021
Hacktoberfest 2021 starts today, deep dive into k8s scheduling, Kubermatic
5 years of Envoy, Kubernetes CVE, getting started with K8s security
State of DevOps report, critical review of the Kubernetes hardening guidance, what happened to Docker, 8 Terraform best practices
Docker updates subscription plan, state of Kubernetes security report, organizing Kubernetes containers, and ArgoCD
Kubernetes dashboards, Path from Kubernetes to Serverless with Kelsey Hightower, and Secret Manager support for Functions
Github Codespaces, KubeCon and learncloudnative.com redesign
This past week I went through the "What's next for cloud native computing?" article and interview by Alex Williams with CTO of CNCF Chris Aniszczyk. In this interview, Chris brings up three main themes based on their trends in CNCF - Rust, and WebAssembly (Wasm), cloud IDEs, and security.
Initially, WebAssembly (Wasm) was designed to run in web browsers. However, projects like WASI allow us to run WebAssembly outside the web. With Wasm, we aren't tied to the programming language of the host application (for example, browser or other application). We can write the extensions in another language (Rust being popular). One instance from the cloud-native world is using Wasm extensions to extend the Envoy proxy.
Here are some resources for you to explore if you're curious about Rust:
- Rust - Official website
- Getting started with Rust
- Rust from the beginning, your first program - 4 tutorials series
- First week learning Rust - notes
- Skip the framework: Build a simple Rust API with Hyper
A good resource for getting up to speed on what's happening with Wasm in the cloud-native space is to check out the videos from the Cloud Native Wasm Day.
Here are a couple of other more generic resources and projects:
- WebAssembly - Official website
- WebAssembly developers guide
- Wasi - WebAssembly System Interface
- Videos from Cloud Native Wasm Day 2021
- Krustlet - running Wasm workloads in Kubernetes cluster
- wasmCloud platform
- WasmEdge Runtime - Cloud native WebAssembly runtime for edge computing
I've written about GitHub Codespaces in a previous newsletter. Another cloud IDE brought up in the article is Gitpod. Gitpod gives you an in-browser (cloud) IDE that includes the code editor, browser, and all the tools needed to develop, build, and run your applications.
I haven't used either of these. However, I am a heavy user of Google Cloud Shell. I am pretty sure other cloud providers have their cloud shell versions as well.
I am looking forward to trying GitHub Copilot that will help me write my code as well :)
The State of Kubernetes security report examines how companies are adopting Kubernetes, containers, and cloud-native tech and securing Kubernetes apps. One of the findings in the report is that 94% of respondents experienced at least one security incident in their Kubernetes environment.
That number alone tells me that so much more can and should be done to secure cloud-native apps/environments and minimize the number of security incidents.
A couple of resources to get you on the path to understanding security more: