Gatekeeper and Policy Controller, with Max Smythe

Kubernetes Podcast from Google

Episode | Podcast

Date: Thu, 15 Jul 2021 19:23:49 +0000

<p>Gatekeeper is an open source project which lets you enforce policy in a Kubernetes cluster. It’s also the basis for Policy Controller, a hosted and managed version now available for all GKE users. <a href="">Max Smythe</a>, a senior SWE at Google, is a maintainer of Gatekeeper and the TL of Policy Controller. He joins us to talk constraints, config and Cruise.</p> <p>Do you have something cool to share? Some questions? Let us know:</p> <ul> <li>web: <a href=""></a></li> <li>mail: <a href=""></a></li> <li>twitter: <a href="">@kubernetespod</a></li> </ul> <h3 id="chatter-of-the-week">Chatter of the week</h3> <ul> <li><a href="">England loses Euro 2020 final</a></li> <li><a href=""> It’s Coming Ohm: prediction on power usage</a></li> <li><a href="">Half time power spike</a></li> <li><a href="">Top 20 spikes</a> <ul> <li><a href="">The Thorn Birds</a></li> </ul> </li> <li><a href=""> The Superbowl Flush</a> - <a href=""> debunked!</a></li> <li><a href=""> Tokyo Olympic Games Opening Ceremonies</a></li> <li><a href="">Hedbanz</a></li> </ul> <h3 id="news-of-the-week">News of the week</h3> <ul> <li><a href=""> APIs being removed in Kubernetes 1.22</a></li> <li><a href="">ContainIQ launches</a></li> <li><a href=""> Postgres Operator 5.0</a></li> <li><a href="">NetworkServiceMesh 1.0.0</a></li> <li><a href=""> Google Cloud Certificate Authority Service GA</a> and <a href="">cert-manager integration</a></li> <li><a href=""> Platform9 Managed KubeVirt</a></li> <li><a href=""> InsightCloudSec from Rapid7</a></li> <li><a href=""> Sophos acquires Capsul8</a></li> <li><a href=""> Spring 2021 graduating class from CNCF-sponsored LFX Mentorship program</a></li> </ul> <h3 id="links-from-the-interview">Links from the interview</h3> <ul> <li><a href="">Brian May</a></li> <li><a href="">Edge of Tomorrow</a> <ul> <li><a href=""> The redemption thereof</a></li> </ul> </li> <li><a href="">Chubby</a></li> <li><a href="">Riak</a></li> <li><a href="">Gatekeeper</a></li> <li><a href="">Anthos Config Management</a> <ul> <li><a href=""> Config Sync</a></li> <li><a href=""> Policy Controller</a></li> </ul> </li> <li><a href="">Episode 101, with Tim Hinrichs and Torin Sandall</a></li> <li><a href=""> PodSecurityPolicy is not going GA</a> <ul> <li><a href=""> SIG Auth’s replacement proposal</a></li> <li><a href=""> Using ACM constraints to enforce Pod security</a></li> </ul> </li> <li><a href=""> OPA Constraint framework</a></li> <li>Policy Controller: <ul> <li><a href=""> Creating constraints</a></li> <li><a href=""> Writing a constraint template</a></li> </ul> </li> <li><a href="">Structural schemas</a></li> <li><a href=""> Design Patterns for Extendable, Scalable K8s Extensions</a> by Rita Zhang and Max Smythe</li> <li><a href="">Max Smythe</a> on Twitter</li> </ul>