Cloud Native Weekly #3
ArgoCD high vulnerability, DevOps Roadmap 2022 and Krius to simplify observability setup in Kubernetes.
I hope you are doing well and taking care of yourself and your loved ones. This week has been a little rough for me, with some medical emergency arising and sickness taking away my few days, so I am keeping this newsletter short.
It’s time to patch ArgoCD. There is a 0-day vulnerability disclosed by Apiiro. An attacker can form a malicious helm chart and can steal secrets and credentials information from the other Apps in ArgoCD. ArgoCD contributors quickly actioned on it and disclosed the advisory.
Grafana Labs shared their Production Readiness Review Process which is a complete checklist that you can adapt to or take as a boilerplate. It is a thoughtfully written document that reduces the chance of failures when you are taking a new service to Production.
Tools of this week
Krius - It simplifies the installation of observability stacks such as Thanos, Prometheus easily.
DevOps Roadmap 2022 - A lot of people reached out to me about knowing the DevOps roadmap, Saiyam has done a very detailed video on this and is very similar to my thoughts. Reach out to me if you have any questions.
Envoy Course by Tetrate - Envoy is the backbone of a lot of service meshes and it has become a very important component in the cloud-native stack.
School of Kubernetes - Vivek has been sharing content on Kubernetes, Writing custom controllers, Go REST APIs etc. Try this structured free course, it has content for all levels.
If you like the content, please subscribe and share the newsletter with your friends and colleagues.