Show HN: Practice your dev skills in a real-world environments through quests
13 points • 1 comments
@shimont | Hacker News
From 8/19/2015, 9:29:16 PM till now, @shimont has achieved 61 Karma Points with the contribution count of 40.
Recent @shimont Activity
My guide to upgrading EKS to version 1.22 – beware of removed APIs
2 points • 0 comments
EKS 1.22 Upgrade Tutorial – Beware of Removed APIs
1 points • 0 comments
ArgoCD Best Practices You Should Know
1 points • 0 comments
Who uses FreeBSD those days? As a company that runs on the cloud, AWS/GCP/Azure you run windows/linux, and on desktop people mainly run MacOS/Windows/Linux.
I am really asking as for what is the main use case of FreeBSD in 2022?
Dont Leave Your K8s Cluster Unguarded Use Gatekeeper Instead
2 points • 0 comments
Kubernetes: The Documentary [Part 1]
4 points • 0 comments
Thank you Varchol :) Also you can use Helm which might help on top of Kubernetes manifests
We just released support for custom rules :) from interviewing our users, we decided to start with [0] JSON Schema as it is very easy to write rules using it and you do not have to learn rego.
Having said that, we might add OPA .rego support in the near future :)
What is the desired way for you to write custom policy rules?
[0] - https://json-schema.org/
Hey, this is a great question.
We are big believers in "shift-left" and trying to fix/avoid issues as early as possible. We started with a CLI tool as it is agnostic and can be run in the devs IDE like VSCODE, in the terminal and finally in the CI/CD process.
We love OPA and think that GateKeeper is a good solution, but we want to provide feedback as early as possible. While Gatekeeper will block a deployment to the Kubernetes cluster at the end of the development process.
As a developer myself I would rather be notified for an issue as early as possible and not find our about it in the very last second before it goes live to production.
We might add support similar to GateKeeper in the future, but we wanted to be shift-left first :)
I hope this answers your question Thank you
I know! I think that the fact that developers are dealing more and more with infra is very empowering but on the other hand brings new challenges. It is no longer Dev VS OPS, but now Devs also need to learn infra best practices, so tools like ours help them :) thank you for your Kudos! <3
The dashboard is also offered as part of our freemium offering :) we offer 1000 policy checks per month for free. Including the dashboard.
In terms of what we offer compared to Polaris: We offer pre-defined policies that comes out of the box along with the ability to write custom rules for your policy by your self.
Take us for a spin and let me know what you think! thank you
Hey, some of our friends were over eager to help hehe :)
I look forward to hearing your feedback! Thank you
Show HN: Datree (YC W20): Prevent K8s misconfigurations from reaching production
144 points • 26 comments
Managing Kubernetes Resources for Containers
9 points • 0 comments
Hey all, I am the author of the post, feel free to ask any questions you might have :)
Opal open source adds realtime updates to Open-Policy-Agent
10 points • 1 comments
I think that this is a great approach to test out the files. Mistakes in those files can cause a production outage. I like doing those tests once a PR is open and before it is merged into master and executed on the production cluster. (Disclaimer i am a co-founder of datree.io)
Will do! thanks
I totally agree! you should rotate the keys! we explain how to get rid of it in terms of Git. This is in addition to rotating it. Sorry for not being clear
site design / logo © 2022 Box Piper