opa gatekeeper and policy controller during continuous integration (ci) pipelines

let’s see how to shift left on security by catching opa gatekeeper policy violations during continuous integration (ci) pipelines.
read more →

secure your apps and your cluster with anthos service mesh

let’s see how you could protect and secure both your apps and your cluster with anthos service mesh (asm)
read more →

gke cos version

let’s see how to get the cos version of your gke nodes
read more →

container scanning

let’s see how to scan your containers with gcp
read more →

mix both internal and external load balancers to expose your crfa services

let’s see how to setup both external and internal load balancers to expose your services in the same crfa cluster
read more →

cloud armor to protect your apps deployed on gke

let’s see how you could protect your apps deployed on gke against denial of service and web attacks
read more →

ebpf and cilium, to bring more security and more networking capabilities in gke

let’s see ebpf and cilium on gke and how they are bringing more security and networking capabilities
read more →

opa gatekeeper with policy controller

let’s see in actions how we could easily leverage opa gatekeeper on any kubernetes cluster via policy controller
read more →

fasten your seatbelt, and turn autopilot mode on

let’s see in actions the new gke’s autopilot mode
read more →

gitops on gke with config sync

let’s see gitops in actions with gke’s config sync
read more →

vertical pod autoscaler

let’s discuss about the vertical pod autoscaler and how it could help setting your Kubernetes resources request and limits.
read more →

advanced continuous integration pipeline for containers

let’s setup an advanced continuous integration pipeline for containers
read more →

google professional cloud architect certification

let’s see which resources I used to prepare my google professional cloud architect certification
read more →

online boutique demo

let’s see how to deploy the online boutique solution on gke, w/ or w/o workload identity
read more →

binary authorization on gke

let’s see how you can only run what you trust (tl;dr whitelisted registries and signed containers) on gke with binauthz
read more →

demo bank on gke

let’s see how to deploy the demo bank (aka bank of anthos) solution on gke, w/ or w/o workload identity
read more →

confidential computing with gke

let’s see how easy it is to enable confidential computing on a gke cluster
read more →

cloud adoption framework with gcp

let’s go through resources such as the google cloud adoption framework, cloud center of excellence, the google cloud setup checklist and best practices for enterprise organizations and eventually the google cloud security foundations guide
read more →

gke’s service account

let’s discuss about how to deal with gke’s service account and few tips to improve your security posture, especially with fine-grained identity and authorization for applications with workload identity
read more →

zero trust security model with google’s beyondcorp

let’s see how google shared best practices and technologies about its own zero trust security model, beyondcorp
read more →

gcr cleaner

let’s see how to cleanup your gcr by deleting old container images
read more →

container native networking

let’s see how gcp brings unique and true container native networking with gke
read more →

application modernization at google next onair 2020

let’s see in details what is google next onair 2020 and more specifically what you should watch on an application modernization standpoint
read more →

cloud operations with gke

let’s see how to leverage google cloud operations (aka stackdriver) with gke
read more →

build and deploy a containerized app on gke with cloud build

let’s see how to use google cloud build to build and deploy a containerized app on gke
read more →

my second week with gcp

let’s share some learnings during my second week leveraging gcp, focused on gke
read more →

my first week with gcp

let’s share some learnings during my first week leveraging gcp, tools and services like linux on my pixelbook, gcloud cli, docker, git, service account, gcr, cloud run, app engine and kubernetes engine
read more →

hello, cloud native hugo blog!

let’s discuss why my new blog is a containerized hugo website hosted on kubernetes
read more →