Securing our software supply chains has become more critical with the rise of software supply chain attacks. Also, over the past few years, container adoption has increased too. In the light of these pieces of information, it has grown the need to sign container images to help prevent supply chain…

Special thanks to Erkan Zileli and Furkan Türkal for their effort while developing this project In the previous blog post, we talked about a brand new toolkit (lima + nerdctl + rancher-desktop) that we can use to work with container images, and in that blog post, we mentioned the buildkit-machine…

Co-authors: Erkan Zileli Furkan Türkal Most of us stepped into the containerization world with Docker. So, we’ll always be grateful to Docker for that. But, to be honest, even we’re working with Docker, we know that it is not the only solution to work with container images but the most…

Authors: Furkan Türkal developer-guy Erkan Zileli 📦 Table of Contents · ⛵️ Kubernetes Admission Controllers · 📝 cert-manager and CA Injector · 🔐 Vault PKI (Public Key Infrastructure) · 💻 Installation · 👀 How to monitor certificates? · ✨ How to accomplish hot-reloading your HTTP server with renewed certificates without having downtime? · 🎯Conclusion …

Written by Furkan Türkal developer-guy Erkan Zileli The first thing that comes to our minds when we want to release our Go binaries is doing it with the help of the command "go get," and of course, there is nothing wrong with this approach. But even "go get" is a…

Written by Erkan Zileli & Furkan Türkal & developer-guy In Trendyol, we are using Kubernetes Admission Webhooks quite heavily. Because Kubernetes is an extensible platform and we love to extend it by writing our own Kubernetes Admission Webhooks and Operators according to our business requirements. If you decide to do…

In the previous post, we mostly had talked about writing Kubernetes Admission Webhooks by using the operator-sdk tool and created our first Mutating Admission Webhook against our custom resource type. But, this time we are going to create another type of Admission Webhook called “Validating” for core types such as…

Kubernetes Admission Controllers concept is very popular these days, especially dynamic ones: MutatingAdmissionWebhook and ValidatingAdmissionWebhook. 🌟 Before jump into the details of how we can write one of these, let's explain a little bit about, what are they, what we can do with them. An admission controller is a piece…

“Dynamic Config&Secret Management” çözümümüzü en basit haliyle hatırlatmak gerekirse, ekiplerin uygulamalarının sahip olduğu sensitive ve non-sensitive konfigürasyonlarını bir dosyaya çıkartmak ve bu dosyayı, değerlerin değişimine uygun şekilde güncel tutmak diyebiliriz. Eğer bu konudaki çözümümüzle ilgili yazıları henüz okumadıysanız sırasıyla aşağıdaki linkteki yazılara göz atmanızı tavsiye ederim. 😊