No heroes needed
Being a hero is nice, isn't it? You work hard, single-handedly save the day, and your teammates are eternally grateful to you. However, such behavior is, in fact, highly problematic. Let's see why, and what to do instead.…
How Kubernetes picks which pods to delete during scale-in
Have you ever wondered how K8s choose which pods to delete when a deployment is scaled down? Given it is not documented, I dived in the source code to learn.…
Moving to HyvorBlogs
A refresh of the blog was long due, and I finally moved to a proper blogging platform. Let's take a look at the how and why…
How to prepare for the Certified Kubernetes Administrator (CKA) exam
The Certified Kubernetes Administrator (CKA) exam tests your ability to operate a Kubernetes (K8s) cluster and your knowledge of how to run jobs over a cluster. I am sharing here some tips&tricks on how to pass it.…
Why K8s deployments need `matchLabels` keyword
Kubernetes deployment want you to specify the `matchLabel` field. But why? It should be able to infer it on its own. Let's deep dive and understand how it works.…
Managing Helm CRDs with Terraform
Introducing a Terraform module to manage Helm Custom Resource Definitions (CRDs) through code, to being able to manage Kubernetes deployments completely through GitOps.…
Why you should contribute to GitLab
Contributing to any open-source project is a great way to spend a few hours each month. I started more than 10 years ago, and it has ultimately shaped my career in ways I couldn’t have imagined!…
Managing Rust crates in private Git repositories
Rust is all hot these days, and it is indeed a nice language to work with. Let's take a look at a small challenge: how to host private crates in the form of Git repositories, making them easily available both to developers and CI/CD systems.…
The inconsistencies of AWS EKS IAM permissions
AWS EKS is a remarkable product: it manages Kubernetes for you, letting you focussing on creating and deploying applications. However, if you want to manage permissions accordingly to the shared responsibility model, you are in for some wild rides.…
How to make Terraform waiting for cloud-init to finish on EC2 without SSH
Terraform is a powerful tool, but it doesn't have a way to wait for EC2 instances to be ready, instead of just created. We will see how to use AWS SSM to do just that.…