Episodes

  • Bret is joined by Mumshad Mannambeth and Vijin Palazhi of KodeKloud for Q&A on what we should be studying and certifying for in 2025.

    💥 This episode is brought to you by our valued sponsor and friends at Aikido!💥
    Aikido is a no-nonse platform that helps developers get security done. It consolidates multiple scanning tools like code analysis, dependency analysis, and cloud security into a single platform. Aikido’s superpower is its ability to remove false positives, so you can focus on the real issues. Aikido not only helps you find true vulnerabilities but their new AI features auto triage and even fix issues for you.
    Aikido is FREE for small teams or anyone wanting to simply explore so check it out today at aikido.dev


    This episode is chalked full of information. We talked about the CNCA Kubestronaut program and how GenAI has changed the cert prep game, and see what tools and techniques we should use to prepare for next year!

    You've probably seen Mumshad's courses. He has been another person like myself who, for almost a decade, has been making container courses on Docker, Kubernetes, all the tooling. Now he's running a giant platform of learning and they're introducing AI into your learning and certification prep, courses, and skills labs. And we go through all of it.

    We talk about all of the Linux Foundation certifications they cover. They've launched over 100 courses now on their platform and they cover a lot, if not all of the Linux certifications, especially around Kubernetes and the Cloud Native ecosystem. I'm a huge fan of that. I think this is great stuff for everyone, especially if you're early in your career and you're using certifications as a way to prove your expertise or you're like me, you've been around forever and you want to show that you're up to date.

    There's also a video version of this show on YouTube.

    ★Topics★
    KodeKloud website

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Mumshad Mannambeth - Guest Vijin Palazhi - Guest(00:00) - DDT MAIN (Audio) Bret's NEW(04:32) - Community in Career Growth(05:48) - Intro(07:51) - Kubernetes Certifications: Kubestronaut(11:36) - The Kubernetes Learning Path(15:40) - Who is Kubestronaut For?(22:24) - Maintaining Kubernetes Certification(24:34) - Changes in Certification Requirements(25:12) - KodeKloud Course Updates(26:46) - Exploring BlueSky for Cloud Native Community(27:21) - AI in Certification and Teaching Assistance(39:21) - AI Tutor and Future of Learning(40:31) - Replacing Q&A with AI?(57:22) - Rapid Fire Q&A(57:32) - Pro vs AI Subscription with KodeKloud(57:53) - Starting with K8s(01:00:52) - Certifications for Software Engineers(01:04:12) - Course Updates and Future Plans(01:06:33) - Developer Courses Plans?(01:09:20) - No Labs for Azure DevOps Course(01:10:53) - MLOps Courses(01:12:23) - Conclusion and Final Thoughts

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal recorded this special offline episode at KubeCon North America in Salt Lake City. We hung out at the AWS booth to break down the major trends and developments from the conference.
    The event drew a record-breaking 10,000 attendees, with roughly half being first-timers to the Cloud Native ecosystem.

    Starting with Cloud Native Rejekts and moving through the pre-conference events, we noticed Platform Engineering emerged as the dominant theme, with its dedicated conference track drawing standing-room-only crowds.


    The main conference showcased a notable surge in new vendors, particularly in AI and security sectors, representing about a quarter of all exhibitors. We dissect the key engineering trends, ongoing challenges in Cloud Native adoption, and insights gathered from various conferences including ArgoCon, BackstageCon, and Wasm Day. In our 40-minute discussion, we tried to capture the essence of what made this year's KubeCon significant. It's a great listen whether you couldn't attend or if you're a veteran of the Cloud Native community.

    ★Show Links★
    Port
    "VM-like container runtime": Microsoft's Hyperlight
    Hyperlight Rejekts talk
    Akcess, easy K8s RBAC CLI
    Cloud Native Operational Excellence

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host(00:00) - Intro(03:38) - KubeCon Rejekts(04:50) - Better Than Namespaces(07:17) - Day 0(08:32) - BackstageCon and Platform Interfaces(12:35) - Argo CD and Deployment Dashboards(13:57) - GitOps Bridge: Bridging Infrastructure and GitOps(14:49) - Kubernetes Resource Orchestrator (KRO)(16:23) - Fleet Management in Kubernetes(18:12) - Ford's Approach to Kubernetes Tooling(19:36) - CNOE: Community-Driven Kubernetes Reference Architectures(26:21) - AI Integration in Kubernetes Tools(34:03) - Managing Infrastructure at Scale with Karpenter(35:13) - KubeCon Highlights and Future Trends

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Missing episodes?

    Click here to refresh the feed.

  • Bret and Nirmal Mehta are joined by Ken Collins to dig into using AI for more than coding, and if we can build an AI assistant that knows us.
    They touch on a lot of tools and platforms. "We're bit all over the place on this one, from talking about AI features in our favorite note taking apps like Notion, to my journey of making an open AI assistant with all of my Q&A from my courses, thousands of questions and answers, to coding agents and more."

    Ken is a local friend in Virginia Beach and was on the show last year talking about AWS Lambda, and we've both been trying to find value in all of these AI tools for our day to day work.

    Be sure to check out the live recording of the complete show from October 24, 2024 on YouTube (Stream 279).

    ★Topics★
    The Lifestyle Copilot Blog Post
    Serverless AI Inference with Gemma 2 Blog Post

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Ken Collins - Guest Nirmal Mehta - Host(00:00) - Intro(01:26) - AI in Recruitment at Torc(03:25) - AI for Day to Day Workflows(04:44) - Notion AI and RAG(07:20) - Creating Your Own AI Search Solution(13:59) - Choosing the Right LLM for the Job(20:55) - Personal AI and Long Context Windows(25:10) - Future of Personal Fine-Tuned Models(25:52) - AI Assistants in Meetings(27:34) - Temperature and AI Hallucinations(32:07) - Agents and Tool Integration(39:31) - Apple Intelligence and Personal AI(44:56) - AI Apps on Mobile(50:00) - LoRA

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret explores the spectrum of user interfaces and tools available for managing Kubernetes clusters as of Autumn 2024.
    This solo episode touches on both paid and open-source options, looking at their features, benefits, and drawbacks. Key tools covered include Lens, Aptakube, K8Studio, Visual Studio Code's Kubernetes extension, K9S, Portainer, and Meshery.

    Bret also discusses specialized tools like Headlamp and the Argo CD dashboard, and their specific use cases and advantages.

    ★Topics★

    LensAptakubeK8StudioK9sKubernetes DashboardPortainerMesheryHeadlamp


    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host(00:00) - Intro(01:43) - Paid UI Offerings(02:22) - Lens(03:42) - Aptakube and K8Studio(04:30) - Free and Open Apps(05:42) - K9s(06:45) - SaaS Offerings(07:32) - Web Dashboards(08:08) - Portainer(09:08) - Meshery(11:14) - Headlamp(13:28) - Argo CD's Web Dashboard

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Chris Kühl and Jose Blanquicet, the maintainers of Inspektor Gadget, the new eBPF-focused multitool, to see what it's all about.
    Inspektor Gadget, aims to solve some serious problems with managing Linux kernel-level tools via Kubernetes. Each security, troubleshooting, or observability utility is packaged in an OCI image and deployed to Kubernetes (and now Linux directly) via the Inspektor Gadget CLI and framework.

    Be sure to check out the live recording of the complete show from September 12, 2024 on YouTube (Stream 277).

    ★Topics★
    Inspektor Gadget website
    Inspektor Gadget Docs
    GitHub Repository

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host Chris Kühl - Guest Jose Blanquicet - Guest(00:00) - Intro(01:33) - Why Inspektor Gadget?(05:49) - Who is Inspektor Gadget For?(21:07) - Windows Nodes Support(22:15) - Stress Testing and OOM(26:50) - Ensuring Safe Use of eBPF Tools(32:42) - Future Roadmap and Platform Support(36:17) - Getting Started with Inspektor Gadget

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Maria Vechtomova, a MLOps Tech Lead and co-founder of Marvelous MLOps, to discuss the obvious and not-so obvious differences between a MLOps Engineer and traditional DevOps jobs.
    Maria is here to discuss how DevOps engineers can adopt and operate machine learning workloads, also known as MLOps. With her expertise, we'll explore the challenges and best practices for implementing ML in a DevOps environment, including some hot takes on using Kubernetes.

    Be sure to check out the live recording of the complete show from June 20, 2024 on YouTube (Stream 271).

    ★Topics★
    Marvelous MLOps on LinkedIn
    Marvelous MLOps Substack
    Marvelous MLOps YouTube Channel

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Maria Vechtomova - Guest Nirmal Mehta - Host(00:00) - Intro(02:04) - Maria's Content(03:22) - Tools and Technologies in MLOps(09:21) - DevOps vs MLOps: Key Differences(19:22) - Transitioning from DevOps to MLOps(22:52) - Model Accuracy vs Computational Efficiency(24:46) - MLOps with Sensitive Data(29:10) - MLOps Roadmap and Getting Started(32:36) - Tools and Platforms for MLOps(37:14) - Adapting MLOps Practices to Future Trends(44:08) - Is Golang an Option for CI/CD Automation?

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal were joined by Emile Vauge, CTO of Traefik Labs to talk all about Traefik 3.0.
    We talk about what's new in Traefik 3, 2.x to 3.0 migrations, Kubernetes Gateway API, WebAssembly (Cloud Native Wasm), HTTP3, Tailscale, OpenTelemetry, and much more!

    Be sure to check out the live recording of the complete show from June 6, 2024 on YouTube (Stream 269). Includes demos.

    ★Topics★
    Traefik Website
    Traefik Labs Community Forum
    Traefik's YouTube Channel
    Gateway API helper CLI
    ingress2gateway migration tool

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host Emile Vauge - Guest (00:00) - Intro(02:20) - Origins of Traefik(05:01) - The Road to 3.0(06:20) - Balancing Stability and Innovation(08:25) - Migration to Traefik 3.0(14:58) - WebAssembly and Plugins in Traefik(21:43) - Gateway API and gRPC Support(30:32) - Gateway API Components and Configuration(33:35) - Tools for Gateway API Management(40:08) - OpenTelemetry Integration(47:21) - Future Plans and Community Contributions

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret is joined by DockerSlim (now mintoolkit) founder Kyle Quest, to show off how to slim down your existing images with various options.
    The slimming down includes distroless images like Chainguard Images and Nix. We also look at using the new "mint debug" feature to exec into existing images and containers on Kubernetes, Docker, Podman, and containerd. Kyle joined us for a two-hour livestream to discuss mint’s evolution.

    Be sure to check out the live recording of the complete show from May 30, 2024 on YouTube (Stream 268). Includes demos.

    ★Topics★
    Mint repository in GitHub

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Kyle Quest (aka Q) - Guest(00:00) - Intro(02:26) - The Evolution of Docker Slim(04:43) - Docker Slim's First Feature(10:04) - Forcing Change is Not Always Possible(13:29) - Docker Slim Name Change to Mintoolkit(15:13) - Dive vs Mint(18:45) - Mint and the Problem with Container Debugging(28:25) - AI-Assisted Debugging(34:46) - Hands-On Debugging Examples(41:27) - Debugging a Podman Image(49:00) - Kubernetes Debugging Example(59:00) - What is KoolKits?(01:05:48) - Future Plans for Mintoolkit(01:06:44) - cdebug: Dedicated Debugging Tool for Containers

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret is joined by Shahar Azulay, Groundcover CEO and Co-Founder, to discuss their new approach to fully observe K8s and its workloads with a "hybrid observability architecture."
    Groundcover is a new, cloud-native, eBPF-based platform that designed a new model for how observability solutions are architected and priced. It is a product that can drastically reduce your monitoring, logging, and tracing costs and complexity, it stores all its data in your clusters and only needs one agent per host for full observability and APM.

    We dig into the deployment, architecture, and how it all works under the hood.

    Be sure to check out the live recording of the complete show from June 27, 2024 on YouTube (Stream 272). Includes demos.

    ★Topics★
    Groundcover Discord Channel
    Groundcover Repository in GitHub
    Groundcover YouTube Channel
    Join the Groundcover Slack

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Shahar Azulay - Guest(00:00) - Intro(03:16) - Shahar's Background and GroundCover's Origin(06:34) - Where Did the Hybrid Idea Come From?(12:11) - GroundCover's Deployment Model (18:21) - Monitoring More than Kubernetes(20:32) - eBPF from the Ground Up(23:58) - How Does Groundcover read eBPF Logs?(32:06) - GroundCover's Stack and Compatibility(36:18) - The Importance of PromQL(37:41) - Groundcover Also OnPrem and Managed(49:35) - Getting Started with Groundcover(52:15) - Groundcover Caretta(54:55) - What's Next for Groundcover?

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Continue.dev co-founder, Nate Sesti, to walk through an open source replacement for GitHub Copilot.
    Continue lets you use a set of open source and closed source LLMs in JetBrains and VSCode IDEs for adding AI to your coding workflow without leaving the editor.

    You've probably heard about GitHub Copilot and other AI code assistants. The Continue team has created a completely open source solution as an alternative, or maybe a superset of these existing tools, because along with it being open source, it's also very configurable and allows you to choose multiple models to help you with code completion and chatbots in VSCode, JetBrains, and more are coming soon.

    So this show builds on our recent Ollama show. Continue uses Ollama in the background to run a local LLM for you, if that's what you want to Continue to do for you, rather than internet LLM models.

    Be sure to check out the live recording of the complete show from May 16, 2024 on YouTube (Ep. 266). Includes demos.

    ★Topics★
    Continue.dev Website

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host Nate Sesti - Guest(00:00) - Introduction(01:52) - Meet Nate Sesti, CTO of Continue(02:40) - Birth and Evolution of Continue(03:56) - Continue's Features and Benefits(22:24) - Running Multiple Models in Parallel(26:38) - Best Hardware for Continue(32:45) - Other Advantages of Continue(36:08) - Getting Started with Continue

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Michael Fischer of AWS to discuss why we should use Graviton, their arm64 compute with AWS-designed CPUs.
    Graviton is AWS' term for their custom ARM-based EC2 instances. We now have all major clouds offering an ARM-based option for their server instances, but AWS was first, way back in 2018. Fast forward 6 years and AWS is releasing their 4th generation Graviton instances, and they deliver all the CPU, networking, memory and storage performance that you'd expect from their x86 instances and beyond.

    I'm a big fan of ARM-based servers and the price points that AWS gives us. They have been my default EC2 instance type for years now, and I recommend it for all projects I'm working on with companies.

    We get into the history of Graviton, how easy it is to build and deploy containers and Kubernetes clusters that have Graviton and even two different platform types in the same cluster. We also cover how to build multi-platform images using Docker BuildKit.

    Be sure to check out the live recording of the complete show from May 9, 2024 on YouTube (Ep. 265). Includes demos.

    ★Topics★
    Graviton + GitLab + EKS
    Porting Advisor for Graviton
    Graviton Getting Started

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host Michael Fischer - Guest(00:00) - Intro(06:19) - AWS and ARM64: Evolution to Graviton 4(07:55) - AWS EC2 Nitro: Why and How?(11:53) - Nitro and Graviton's Evolution(18:35) - What Can't Run on Graviton?(23:15) - Moving Your Workloads to Graviton(27:19) - K8s Tooling and Multi-Platform Images(37:07) - Tips for Getting Started with Graviton

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by friend of the show, Matt Williams, to learn how to run your own local ChatGPT clone and GitHub Copilot clone with Ollama and Docker's "GenAI Stack," to build apps on top of open source LLMs.

    We've designed this conversation for tech people like myself, who are no strangers to using LLMs in web products like chat GPT, but are curious about running open source generative AI models locally and how they might set up their Docker environment to develop things on top of these open source LLMs.

    Matt Williams is walking us through all the parts of this solution, and with detailed explanations, shows us how Ollama can make it easier on Mac, Windows, and Linux to set up LLM stacks.

    Be sure to check out the video version of this episode for any demos.

    This episode is from our YouTube Live show on April 18, 2024 (Stream 262).

    ★Topics★

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Matt Williams - Host Nirmal Mehta - Host(00:00) - Intro(01:32) - Understanding LLMs and Ollama(03:16) - Ollama's Elevator Pitch(08:40) - Installing and Extending Ollama(17:17) - HuggingFace and Other Libraries(19:24) - Which Model Should You Use?(26:28) - Ollama and Its Applications(28:57) - Retrieval Augmented Generation (RAG)(36:44) - Deploying Models and API Endpoints(40:38) - DockerCon Keynote and LLM Demo(47:44) - Getting Started with Ollama

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret is joined by Jasper Paul and Vinoth Kanagaraj, observability experts and Site24x7 Product Managers, to discuss achieving end-to-end visibility for applications on Kubernetes infrastructure. We answer questions on all things monitoring, OpenTelemetry, and KPIs for DevOps and SREs.

    We talk about the industry's evolution from monitoring to full observability platforms, as well as adjacent topics for helping you with your own Kubernetes and application monitoring, including going through some of the most useful metrics in Kubernetes and AI's role in metric analysis and alerting humans.

    Be sure to check out the live recording of the complete show from April 25, 2024 on YouTube (Ep. 263). Includes demos.

    ★Topics★
    Site24x7 Full stack observability
    Site24x7 Kubernetes monitoring
    Voting App

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host J.P. Jasper - Guest(00:00) - Intro(02:01) - Observability vs Monitoring(08:32) - The New App Health Layer(14:39) - Attributes Collected(17:47) - Unified Observability(19:00) - AI-Powered Insights: The Role of AIOps(21:51) - OpenTelemetry and Multi-Cluster Monitoring(25:45) - Windows Support(26:06) - Correlating Requests Between Microservices(28:14) - Synthetic vs Real-Time Monitoring(30:25) - Dashboards, Tracing and Metrics(37:17) - Getting Started

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Neil Cresswell and Steven Kang from Portainer to look at K2D, a new project that enables us to leverage Kubernetes tooling to manage Docker containers on tiny devices at the far edge.

    K2D stands for Kubernetes to Docker, which is a bit of a crazy idea -- it's a partial Kubernetes API running on top of Docker Engine without needing a full Kubernetes control plane. If you work with very small devices, including older Raspberry PIs, 32-bit machines, maybe industry sensors and the infrastructure we now call 'edge', the container hardware is often hard for you to make simple, reliable, and automated all at the same time.

    So this project uses less resources than a single node K3S and still allows you to use Kubernetes tools to deploy and manage your containers, which are in fact just running on a Docker Engine with no full-fledged Kubernetes distribution going on there.

    We get into far more detail on the architecture, the Portainer team's motivations for this new open source project and what its limitations are, because it's not real Kubernetes, so it can't do everything.

    Be sure to check out the video version of this episode for any demos.

    This episode is from our YouTube Live show on March 28, 2024 (Stream 260).

    ★Topics★
    K2D website
    K2D Docs

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Neil Cresswell - Guest Nirmal Mehta - Host Steven Kang - Guest(00:00) - Intro(02:40) - Introducing the guests(03:56) - Why K2D? Architecture and Motivations(05:55) - How Efficient is K2D?(10:25) - K2D Architecture Explained: Components and Operations(20:42) - What Happens When Resources are Exhausted?(23:18) - K2D for Edge Deployment with Portainer or Argo CD(28:22) - K2D Future Roadmap(30:36) - Getting Started with K2D

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Dan Lorenc from Chainguard to walk them through Chainguard's approach to building secure, minimal container images for popular open source software.

    They discuss why it is important to have secure and minimal container images. Dan explains how Chainguard helps remove the pain of CVEs, laggy software updates and patches and much more. Chainguard is now available also on Docker Hub.

    They spend the first part of the show talking about the week's big news: the XZ supply chain attack, and Dan was the best man to explain it. They also touch on CVEs, things you can do to reduce the attack surface, SLSA, and more during this jam-packed show.

    Be sure to check out the live recording of the complete show from April 4, 2024 on YouTube (Ep. 261).

    ★Topics★
    Chainguard Website
    Vulnerability Management Certification course
    True Cost of Vulnerability Management
    Chainguard Images
    Chainguard on Docker Hub Announcement

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host Dan Lorenc - Guest(00:00) - Intro(05:14) - Dan's Take on the XZ Hack(14:59) - Chainguard Distro Creation(21:21) - Chainguard in Docker Hub Announcement(24:26) - Free Images vs Private Images(26:27) - Zero CVE Approach(28:33) - Ways to Reduce Attack Surfaces(39:56) - Chainguard Academy(41:08) - Real Time Antivirus Malware Scanner(43:52) - Google Distro Lists Worth Using(45:56) - Chainguard for Buildpacks(46:20) - SLSA(56:08) - What's Next for Chainguard?(56:52) - Getting Started with Chainguard

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Phil Estes of AWS to show us the Finch project, which bundles the best open source tools for building and running containers locally. Now it runs on macOS and Windows WSL2.

    We've been talking with Phil about this show for months, and now that Finch has come to Windows, we thought it was the best time to clue you in as to why AWS created the Finch project and what it does.

    You've probably heard of containerd, the most popular container runtime on the planet and BuildKit, the best way, in my opinion, to build container images. Those two work hand in hand in Docker and many other container tools. But you might not have heard of nerdctl or Lima, which are also open source tools that work with containerd and BuildKit to help you run containers locally in a virtual machine. Well, AWS had the idea of making an easy installer for these four tools. That's how Finch was born.

    Finch is not meant to be a replacement of your existing way to run containers. The tools it installs are a bit of a minimum feature set, if you will, and more focused on providing people the exact tools AWS uses in its container platforms, mainly containerd and BuildKit, which are everywhere in AWS. Rather than building something that's feature equivalent to other local container solutions like Docker Desktop and Rancher Desktop, Finch keeps it simple and does the bare minimum.

    If you just want an easily installable and minimal way to build and run local containers at the command line with no goofy, high-end fancy features, pure open source and just on Mac and Windows, at least at this point, you should give Finch a try.

    Be sure to check out the live recording of the complete show from February 22, 2024 on YouTube (Ep. 255).

    ★Topics★
    Finch Website
    Bret's local container runtime spreadsheet

    Creators & Guests

    Phil Estes - Guest Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Nirmal Mehta - Host(00:00) - Intro(00:35) - What is Finch?(03:53) - Phil's History with Docker and Finch(07:59) - Deep Dive into AWS Finch Project(11:41) - How do the Components Tie Together(25:31) - Finch's Position in the Container Ecosystem(26:47) - Finch's Capabilities and Comparisons(27:45) - VM Management and Lima Integration(37:51) - Finch's Roadmap and Community Engagement(41:49) - How Does Finch Connect to Lima?(42:45) - Potential Lima Conflicts with Finch(46:38) - Getting Started wtih Finch

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret is joined by Neil Cresswell, CEO and co-founder of Portainer, to show us new features in Portainer and how it can manage, deploy, and orchestrate all your container workloads from a single Docker Engine, all the way to multi-cluster and IoT Kubernetes deployments.

    Portainer is much more comprehensive than you might think. Docker on the Edge, Podman, Kubernetes, in the cloud, in hybrid, you name it; it seems that Portainer supports it. In the show, we also get some updates on new things that have happened in the last couple of years, including adding GitOps support to Portainer, the ability to deploy Kubernetes nodes, and infrastructure.

    Be sure to check out the live recording of the complete show with demos from February 29, 2024 on YouTube (Ep. 256).

    ★Topics★
    Portainer Website
    Portainer on YouTube
    Portainer on X
    Portainer on LinkedIn
    Portainer Demo: Kubernetes the "easy" way

    Creators & Guests

    Cristi Cotovan - Editor Beth Fisher - Producer Bret Fisher - Host Neil Cresswell - Guest(00:00) - Intro(02:50) - How Portainer Started(05:38) - Portainer's Strongest Use Cases(08:56) - Portainer's Cluster Provisioning(12:42) - Docker Desktop and Portainer(15:22) - GitOps with Portainer(18:43) - K2D Teaser(21:34) - Portainer Across Different Environment Types(25:21) - Portainer's Focus on IoT and Edge(29:01) - Portainer's Evolution and Future Developments(35:03) - Passwords and Secrets Capabilities in Portainer(40:15) - AI Capabilities in Portainer(42:06) - Portainer Editions, Licenses and Pricing(43:09) - Using Traefik for Ingress(44:53) - What's Next for Portainer?

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Ivan Burazin and Chad Metcalf to debut Daytona, an open source "codespaces equivalent."

    Daytona is a development environment manager designed to automate all the tedious steps a developer needs to perform to set up their development environment. "Essentially, it transforms any machine into a codespaces equivalent."

    Where Daytona is actually starting in the enterprise is focusing on large dev environment solutions and management of those, and then trickling down to individual developers. So there are two very similar solutions to a problem of many developers and their varying ways that they set up their environments for development, but they're coming at it from two ends of the spectrum.

    Be sure to check out the live recording of the complete show with demos from March 7, 2024 on YouTube (Ep. 257).

    ★Topics★
    Daytona website
    Daytona on GitHub
    Why Daytona OSS'd
    DIY Guide

    Creators & Guests

    Ivan Burazin - Guest Chad Metcalf - Guest Bret Fisher - Host Nirmal Mehta - Host Beth Fisher - Producer Cristi Cotovan - Editor(00:00) - Intro(06:33) - CodeAnywhere(07:50) - Introducing Daytona: Revolutionizing Dev Environments(13:54) - Demo(21:07) - Daytona's Automation Magic(22:49) - Comparing Daytona with DevPod(25:15) - Daytona's Roadmap and Beyond(27:01) - Dev Environments and IDEs(39:52) - AI with Daytona(44:05) - Getting Started with Daytona(44:35) - Getting Involved in Daytona(47:00) - Features About to Ship in Daytona

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Lukas Fittl of pganalyze to dive into Postgres in containers, in production, and in CI.

    Lukas is an expert and founder of pganalyze, and I invited him on the show to explain a lot of this to us and catch us up with what's going on in the Postgres community, particularly when it comes to containers and production.

    We dive into everything around containers with Postgres, some of the new stuff going on in Postgres Land, including tuning and stuff I didn't even know about Postgres, including storing NoSQL data, vector databases for AI and more.

    Be sure to check out the live recording of the complete show from February 15, 2024 on YouTube (Ep. #254).

    ★Topics★
    pganalyze website
    pganalyze YouTube channel
    pgvector
    cloudnative-pg
    Crunch Postgres for Kubernetes
    CockroachDB

    Creators & Guests

    Bret Fisher - Host Lukas Fittl - Guest Nirmal Mehta - Host Cristi Cotovan - Editor Beth Fisher - Producer(00:00) - Intro(01:59) - Is Postgres Underrated?(04:18) - What is pgAnalyze?(05:02) - Database Performance Tuning(11:11) - Postgres in Containers(19:44) - Opinion on kubegres and other operators in managing HA(25:03) - The role of Database Administrators and Data Engineers(31:54) - Running Postgres HA across multi-cluster(39:23) - What does pgnalyze do?(44:45) - The hardest operational problem running Postgres in containers

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com

  • Bret and Nirmal are joined by Melissa McKay, Developer Advocate at JFrog and Docker Captain, to discuss the best and worst of 2023.

    We recorded this episode in December of 2023 where we talked through our favorite tools. Whether a DevOps oriented tool or not, it just might be the things we like to use on containers and in Cloud Native DevOps. This is a fun episode of three friends talking about what they love. And I sometimes I think these are the best shows because we didn't plan them out. I hope you enjoy listening to it as much as we did recording it.

    The live recording of the complete show from December 14, 2023 is on YouTube (Ep. #245)

    ★Topics★
    Dive Website
    SlimToolkit Website
    OpenTelemetry Website
    eBPF Website
    eBPF Documentary
    Continuous Delivery Foundation
    CDEvents Website
    ML Ops Website
    Ollama Website
    Docker + Ollama
    Neo4j Website
    Inspektor Gadget Website
    Arc Browser
    k6 Load testing

    Creators & Guests

    Beth Fisher - Producer Bret Fisher - Host Melissa McKay - Guest Cristi Cotovan - Editor(00:00) - DDT MAIN(04:13) - A Little Tool Called Dive(09:49) - SlimTooklit from Slim.AI(12:11) - OpenTelemetry(14:57) - eBPF(18:44) - Chainguard Images(21:48) - Digestabot(25:03) - Looking Forward to 2024(27:29) - CDEvents(31:32) - MLOps(34:58) - Ollama(37:30) - WebAssembly(38:26) - Inspektor Gadget (39:33) - Arc Browser

    You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

    Grab the best coupons for my Docker and Kubernetes courses.
    Join my cloud native DevOps community on Discord.
    Grab some merch at Bret's Loot Box
    Homepage bretfisher.com