"Eventual consistency is a lie" - Ancient Cloud Native Sith Saying

Yes, I am using headlamp on my pixel fold running on EKS with hardware MFA and no, headlamp's ServiceAccount doesn't have any permissions.

Rewrote the websockets layer to be simpler, now Head Lamp with impersonation is working great for logs and terminals! Next release will default to Head Lamp instead of the Kubernetes dashboard. Will also remove the need for a second chart.

This is pretty cool. Customer asked if they could use our STS to authenticate to vault without using a static service account but still validating the source pod is active. Blog post coming!

When you're at the coffee shop working on a lab over your vpn and the proxmox server hosting it just dies....

EU CRA law. Impact on devs and maintainers. Starts with a BOM...bill of materials. Make sure the materials are "safe". No SaaS/web sites. Non commercial hobby not covered.

Sponsored keynote from HAProxy on universal mesh. "Mesh tax" both side car and no side car. Multi cluster ready, both boundary and intercluster. Explicit routing.

What up KubeCon fam? But of a late start. Next up is how OpenAI saved half their telemetry CPU usage with one line of code. Using fluentbit. Would be nice to hear more about environmental impact instead of being able to do more tech. Saved 30k CPU cores by checking files less

Anchoring trust and identity in kubernetes for ai. Sponsored from red hat. Why are people leaving😭. OIDC not enough. Need SPIFFE and SPIRE. Kserve is now CNCF incubating project.

Pokemon, ML, and kube. Geo temporal. How to handle raid battles? What kind of raid? Where? When? Not hard to imagine how insane of a problem this is at scale. KubeFlow for ML on kube.