You are viewing documentation for Flux version: 2.0
Version 2.0 of the documentation is no longer actively maintained. The site that you are currently viewing is an archived snapshot. For up-to-date documentation, see the latest version.
Posts in 2022
March 2022 Update
2022-04-04 in Blog
tl;dr: New Flux and Flagger releases bring more security and features and bring us ever more closely to GA, many new adopters have joined our community, Flux articles and docs, upcoming Flux events helping you get started and more.
As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are available for integration, and where you can get involved. Read our last update here. It’s the beginning of April 2022 - let’s recap together what happened in March - it has been a lot! Update: Earlier versions of this post …
Flux puts the Git into GitOps
2022-03-25 in Blog
tl;dr: Flux integrates very tightly with all relevant APIs and SDKs. For us to provide the best possible Git support to bring you GitOps, shelling out to Git is not an option. Find out why in this blog post.
Ever since the rewrite of Flux as a set of focused controllers, it has become clearer what each of its functions and capabilities are. The aptly named controllers carry in their name what they are responsible for and which data or tooling they interact with, so that is, e.g. source, kustomize, image-automation, notification, helm, etc. If you wanted to string a proof-of-concept for a GitOps tool …
Flagger adds Gateway API Support
2022-03-11 in Blog
tl;dr: Flagger 1.19.0 adds support for Gateway API, which will allow us to support new Gateway API implementations seamlessly going forward. Check out the tutorial to see how you are going to benefit from this.
The Flagger team is proud to bring you Kubernetes Gateway API support as part of the 1.19.0 release. Read here about why this is a significant development in Flagger and how you can make use of it. What is Flagger? Flagger is a progressive delivery tool that automates the release process for applications running on Kubernetes. It reduces the risk of introducing a new software version in production …
Security: Using Pod Security Standard "restricted"
2022-03-09 in Blog
tl;dr: pod security standards is a recent addition to Kubernetes, coming to replace pod security policies. Alongside seccomp, it provides greater isolation levels to workloads. Read up on how we moved all Flux controllers to 'restricted' mode and how that's going to keep you safer.
Next up in our blog series about Flux Security is how we moved to Pod Security Standard “restricted”, all the background info you need to know and how that makes things safer for you. Since version 0.26 of Flux we are applying [..] the restricted pod security standard to all controllers. In practice this means: all Linux capabilities were dropped the root filesystem was set to …
February 2022 Update
2022-03-01 in Blog
tl;dr: New Flux and Flagger releases bring more security, many new adopters have joined our community, Flux articles and docs, upcoming Flux events helping you get started and more.
As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are available for integration, and where you can get involved. Read our last update here. It’s the beginning of March 2022 - let’s recap together what happened in February - it has been a lot! News in the Flux family Latest Flux is …
Security: More confidence through Fuzzing
2022-02-22 in Blog
tl;dr: ADA Logics helped us moving to Fuzzing as part of their security audit. We finally implemented this for all Flux controllers. Learn here how this keeps you safer.
Next up in our blog series about Flux Security is how we implemented fuzzing in Flux and its controllers and how that makes things safer for you. Wikipedia explains Fuzzing like so: Fuzzing or fuzz testing is an automated software testing technique that involves providing invalid, unexpected, or random data as inputs to a computer program. The program is then monitored for exceptions such as …
Security: Image Provenance
2022-02-14 in Blog
tl;dr: Next up in our series of blog posts about Flux's security considerations. This time: image provenance - how to make it part of your workflow and how it keeps you safe.
Next up in our blog series about Flux Security is how and why we use signatures for the Flux CLI and all its controller images and what you can do to verify image provenance in your workflow. Since Flux 0.26 our Security Docs had this addition: The Flux CLI and the controllers' images are signed using Sigstore Cosign and GitHub OIDC. The container images along with their signatures are published …
Security: The Value of SBOMs
2022-02-07 in Blog
tl;dr: The first in our series of blog posts about Flux's security considerations. This time: what a Software Bill of Materials can do to keep you safe.
Flux - built with security in mind You don’t get to re-architect a successful project very often, but we did about two years ago. The Flux project was already off to a great start and had many happy adopters and many of its design principles we kept at the forefront of our mind: Pull vs Push: if you haven’t read this great blog post from 2018 about why you want Pull - all it says still …
January 2022 Update
2022-01-31 in Blog
tl;dr: New Flux and Flagger releases bring more security, terraform-controller team wants feedback, Flux articles and docs, upcoming Flux events helping you get started and more.
As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are available for integration, and where you can get involved. Read our last update here. It’s the beginning of February 2022 and you have been waiting for a long time - let’s recap together what happened in January and December- …
Posts in 2021
December 2021 Update
2021-11-30 in Blog
tl;dr: New Flux releases bring more security, update GitHub integration, add support for BitBucket Server. We need your input on new Flux RFCs, upcoming events featuring Flux and more.
As the Flux family of projects and its communities are growing, we strive to inform you each month about what has already landed, new possibilities which are available for integration, and where you can get involved. Read last month’s update here. Let’s recap what happened in November - there has been so much happening! News in the Flux family A flurry of Flux releases The Flux …