Credits first! Before you read this article I highly recommend reading my dear friend and colleague Hillay Amir two incredibly well-written articles about the new Red Hat utility tool oc-mirror. They are referenced in the next section. My added-value oc-mirror and skopeo are binaries made by Red Hat to work with imported images; The…

Hi everyone! I must say I’m very excited about this one; Recently I got promoted to a Cloud Security Principle Consultant at Red Hat; As part of my advancing process, I’ve been working on multiple PoCs and demos around making Kubernetes & Openshift clusters more secure. So far I’ve had multiple opportunities…

Preface — The problem You would think that building container images is a pretty simple matter, you’ll be right, but not always secure. The build process alternatives There are two main options when it comes to building container images: Build the images inside the cluster directly (using Openshift S2i [Source-to-Image] feature) Note! This option includes building images with…

WHAT? Just by reading the headline you probably ask “What does Service Mesh has to do with Chaos Engineering?”; …

Why am I even writing this? You have absolutely no idea how many times I’ve come to a customer’s site, had been asked to do something that required me to drain a worker node, or to rollout all of the nodes (like adding a new Operator to the OLM/Operator Hub), just to figure out that this…

Is it happen to you as well? When you just run the innocent command: oc delete project X OR kubectl delete ns X And it just does not want to go along with your wishes? …

Well well, I missed it. Schedule a blocker on my calendar, notify everyone not to bother me for the next couple of hours, put on my favorite music and just write about technology.

Automation is key I have to admit, I did this procedure manually way too many times; Until this one time that I forgot a command along the way, and troubleshooting it was just time (and motivation) consuming. Eventually, inevitably, an (obvious) solution will appear; So I sat myself down and wrote a “little”…

Let’s start with the problem Recently as part of my work at Red Hat, a customer reached out to me and asked for my help in editing monitoring related configurations; The customer wanted to do pretty simple things like generating new alerting rules that are related to the infrastructure, fetch infrastructure-related metrics, rename/relabel some of…