Cloud Native Weekly: CNCF Announces KubeEdge Graduation
Open Source Project Recommendation
Watchtower
Watchtower is a project that automatically monitors and updates running Docker containers. It periodically checks for and pulls the latest image version from Docker Hub or a private image repository and automatically restarts the container. It is suitable for development, testing and personal use, but is not recommended for production environments.
Vulhub
Vulhub is a collection of open source vulnerability environments for the general public, the project contains more than 180 rich and real vulnerabilities and their corresponding environments, without the need for Docker knowledge can be a simple command to run up a complete application with a certain vulnerability.
Kratos
Kratos is an open source Go microservices framework , including a large number of microservice-related frameworks and tools. Solve the Gin in the microservices scene in some of the adaptation and microservices itself a series of ecological .
OpenHands
OpenHands is an AI-powered intelligent assistant for software development, formerly known as OpenDevin, that aims to create an open source alternative to Devin. It is equipped with an intuitive and user-friendly interactive interface that enables users to easily accomplish diverse software development tasks through natural language commands, including project cloning, code modification, command execution, API calls, and code commits. In addition, OpenHands supports running in a Docker environment and has compatibility with a wide range of AI model interfaces, providing users with an efficient and flexible software development experience.
Article Recommendations
KubeSphere v4 Installation Guide
On October 10, 2024, the KubeSphere open source community announced the official release of KubeSphere v4 (Open Source Edition), along with the release of the new pluggable architecture, KubeSphere LuBan. Compared to all previous versions of KubeSphere, KubeSphere v4 can be said to be a disruptive change. The KubeSphere open source community is pleased to present this installation guide to help you transition from the old version to the new one.
KubeSphere v4 Explained: Uncovering the Top 12 Issues You Want to Know About
KubeSphere v4 has made significant progress in functionality, performance optimization, compatibility, security and upgrade process, providing developers with an efficient development experience. In order to help you use KubeSphere v4 more smoothly, the KubeSphere open source community has carefully summarized twelve hot issues that developers are frequently concerned about, which comprehensively cover key aspects such as functionality, performance, compatibility considerations, security, and upgrade process.
Statement and Solution for KubeSphere IDOR Security Vulnerability CVE-2024-46528
This article describes the discovery of an insecure direct object reference (IDOR) vulnerability on KubeSphere Open Source 3.4.1 and 4.1.1 that allowed a low-privileged attacker to access sensitive resources.The KubeSphere team contacted the discoverer to provide a workaround, and is planning to fix the issue in the 4.1.3 release.KubeSphere is committed to KubeSphere is committed to providing users with a secure and reliable solution and would like to thank the discoverer for his contribution. Users can contact the KubeSphere support team at the specified email address for more details.
Kubernetes Image Generator Exposed to Serious Vulnerability, Nodes at Risk of Root Access
This article describes a recently disclosed critical security vulnerability (CVE-2024-9486, CVSS score: 9.8) affecting the Kubernetes Image Builder, which, if successfully exploited, could gain root access under certain circumstances. The vulnerability involves default credentials being enabled during the image build process and VM images built using the Proxmox provider not disabling those default credentials.The Kubernetes team has fixed this vulnerability in version 0.1.38 by replacing the default credentials with a randomly-generated password and disabling the build account at the end of the image build. Additionally, this release addresses issues related to default credentials when using Nutanix, OVA, QEMU, or Raw providers (CVE-2024-9594, CVSS score: 6.3).
Cloud Native Dynamics
CNCF Announces KubeEdge Graduation
KubeEdge is an open source edge computing project based on Kubernetes that officially graduated on October 15, 2024 from the Cloud Native Computing Foundation (CNCF). Since being open sourced by Huawei Cloud in 2018, KubeEdge has expanded to include maintainers from 15 organizations and a large community of over 1,600 contributors from 110 organizations in 35 countries. It extends the functionality of Kubernetes to the edge, is widely used in multiple industries such as CDNs and smart transportation, and has gained widespread recognition in the industry. In the future, KubeEdge will continue to maintain open governance and collaboration, explore new areas, and provide users with more reliable and stable services.
Backward compatibility of Keycloak versions
Keycloak will adjust its release strategy to reduce the burden of deploying updates: servers will be released in 4 minor releases per year, major releases will be released every 2-3 years, and client libraries will be released separately and support all currently supported server versions. New features and improvements will be introduced in a backward-compatible manner, and disruptive changes in minor releases will be optional and enforced through version control, allowing for incremental rollout of new features or API versions.
About KubeSphere
KubeSphere is an open source container platform built on top of Kubernetes, providing full-stack IT automation capabilities to simplify enterprise DevOps workflows.
KubeSphere has been adopted by Aqara Smart Home, BenLife, Orient Communications, Microhome, Neusoft, Huayun, Sina, Sany Heavy Industry, Huaxia Bank, Sichuan Airlines, Sinopharm, Microcrowd Bank, Zijin Insurance, GoWhere.com, Zhongtong, People's Bank of China, Bank of China, PICC Life Insurance, China Taiping Insurance, China Mobile, China Unicom, China Telecom, Tianyi Cloud, KubeSphere provides a developer-friendly wizard-like interface and rich enterprise-class features, including Kubernetes multi-cloud and multi-cluster management, DevOps (CI/CD), application lifecycle management, edge computing, Service Mesh, multi-tenancy, and multi-cluster management. Mesh, multi-tenant management, observability, storage and network management, GPU support, and more to help organizations quickly build a powerful and feature-rich container cloud platform.
✨ GitHub:/kubesphere
💻 Official website (China site):/zh
🙋 Forum:/forum/
👨💻 WeChat group: please search and add group assistant micro signal kubesphere