Fission output type blog post #484
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Welcome @gauravgahlot! It looks like this is your first PR to falcosecurity/falco-website 🎉 |
|
/assign |
Issif
reviewed
Jul 22, 2021
| > * [Kubernetes Response Engine, Part 4 : Falcosidekick + Tekton]({{< ref "/blog/falcosidekick-reponse-engine-part-4-tekton" >}}) | ||
| > * [Kubernetes Response Engine, Part 5 : Falcosidekick + Argo]({{< ref "/blog/falcosidekick-reponse-engine-part-5-argo" >}}) | ||
| > * [Kubernetes Response Engine, Part 6 : Falcosidekick + Cloud Run]({{< ref "/blog/falcosidekick-reponse-engine-part-6-cloud-run" >}}) | ||
| > * [Kubernetes Response Engine, Part 7: Falcosidekick + Cloud Functions]({{< ref "/blog/falcosidekick-reponse-engine-part-7-cloud-functions" >}}) |
There was a problem hiding this comment.
Suggested change
| > * [Kubernetes Response Engine, Part 7: Falcosidekick + Cloud Functions]({{< ref "/blog/falcosidekick-reponse-engine-part-7-cloud-functions" >}}) | |
| > * [Kubernetes Response Engine, Part 7 : Falcosidekick + Cloud Functions]({{< ref "/blog/falcosidekick-reponse-engine-part-7-cloud-functions" >}}) |
|
/hold We can't release this post before next version of falcosidekick |
leogr
reviewed
Aug 18, 2021
|
|
||
| ### Provision local Kubernetes Cluster | ||
|
|
||
| There are various ways to provision a local Kubernetes cluster such as, KinD, k3s, k0s, Minikube etc. We are going to |
There was a problem hiding this comment.
Suggested change
| There are various ways to provision a local Kubernetes cluster such as, KinD, k3s, k0s, Minikube etc. We are going to | |
| There are various ways to provision a local Kubernetes cluster such as KinD, k3s, k0s, Minikube, etc. We are going to |
| The earlier posts in this series, show how to use Kubeless, Argo, Knative, and others to trigger a resource after getting input from Falcosidekick. | ||
| Recently, Falcosidekick received a new output type support for [Fission](https://github.com/falcosecurity/falcosidekick/pull/255). | ||
|
|
||
| In this blog post, we will cover using `Falcosidekick` and `Fission` to detect and delete a compromised pod in Kubernetes cluster. |
There was a problem hiding this comment.
Suggested change
| In this blog post, we will cover using `Falcosidekick` and `Fission` to detect and delete a compromised pod in Kubernetes cluster. | |
| In this blog post, we will cover using `Falcosidekick` and `Fission` to detect and delete a compromised pod in a Kubernetes cluster. |
|
|
||
| The function we are going to deploy basically receives events for an infected pod from the _Falcosidekick_ and deletes it immediately. | ||
| Before deploying the function we need some permissions to delete Pod. | ||
| We create a `ServiceAccount` with right to delete a Pod in any namespace, and we'll associate it to our function: |
There was a problem hiding this comment.
Suggested change
| We create a `ServiceAccount` with right to delete a Pod in any namespace, and we'll associate it to our function: | |
| We create a `ServiceAccount` with rights to delete a Pod in any namespace, and we'll associate it to our function: |
|
|
||
| ## Conclusion | ||
|
|
||
| With this really simple example, we got another way to create a Response Engine with amazing pieces of software from Open Source world. |
There was a problem hiding this comment.
Suggested change
| With this really simple example, we got another way to create a Response Engine with amazing pieces of software from Open Source world. | |
| With this really simple example, we got another way to create a Response Engine with amazing pieces of software from the Open Source world. |
Issif
reviewed
Aug 18, 2021
| @@ -0,0 +1,505 @@ | |||
| --- | |||
| title: "Kubernetes Response Engine, Part 8: Falcosidekick + Fission" | |||
| date: 2021-07-22 | |||
There was a problem hiding this comment.
Please update the date to a more recent one (after release of 2.24.0 of falcosidekick)
gauravgahlot
force-pushed
the
output-fission
branch
from
7b6a2cb
to
3d2955b
Compare
gauravgahlot
force-pushed
the
output-fission
branch
from
058bb15
to
9f8e288
Compare
Issif
reviewed
Aug 29, 2021
| @@ -0,0 +1,505 @@ | |||
| --- | |||
| title: "Kubernetes Response Engine, Part 8: Falcosidekick + Fission" | |||
| date: 2021-08-19 | |||
There was a problem hiding this comment.
Suggested change
| date: 2021-08-19 | |
| date: 2021-08-29 |
Issif
requested changes
Aug 29, 2021
Issif
approved these changes
Aug 29, 2021
Issif
requested changes
Aug 31, 2021
| @@ -0,0 +1,505 @@ | |||
| --- | |||
| title: "Kubernetes Response Engine, Part 8: Falcosidekick + Fission" | |||
There was a problem hiding this comment.
Suggested change
| title: "Kubernetes Response Engine, Part 8: Falcosidekick + Fission" | |
| title: "Kubernetes Response Engine, Part 9: Falcosidekick + Fission" |
| title: "Kubernetes Response Engine, Part 8: Falcosidekick + Fission" | ||
| date: 2021-08-29 | ||
| author: Gaurav Gahlot | ||
| slug: falcosidekick-reponse-engine-part-8-fission |
There was a problem hiding this comment.
Suggested change
| slug: falcosidekick-reponse-engine-part-8-fission | |
| slug: falcosidekick-reponse-engine-part-9-fission |
| > * [Kubernetes Response Engine, Part 4 : Falcosidekick + Tekton]({{< ref "/blog/falcosidekick-reponse-engine-part-4-tekton" >}}) | ||
| > * [Kubernetes Response Engine, Part 5 : Falcosidekick + Argo]({{< ref "/blog/falcosidekick-reponse-engine-part-5-argo" >}}) | ||
| > * [Kubernetes Response Engine, Part 6 : Falcosidekick + Cloud Run]({{< ref "/blog/falcosidekick-reponse-engine-part-6-cloud-run" >}}) | ||
| > * [Kubernetes Response Engine, Part 7 : Falcosidekick + Cloud Functions]({{< ref "/blog/falcosidekick-reponse-engine-part-7-cloud-functions" >}}) |
There was a problem hiding this comment.
Can you add the part 8 with Flux v2 please
Issif
previously approved these changes
Aug 31, 2021
|
LGTM label has been added. Git tree hash: afecdf26c827d0758c39d0463e6455e97c5b444e
|
gauravgahlot
force-pushed
the
output-fission
branch
from
efb82a9
to
472f9ba
Compare
|
Needs a rebase after #492 is merged. |
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
Signed-off-by: Gaurav Gahlot <gauravgahlot0107@gmail.com>
gauravgahlot
force-pushed
the
output-fission
branch
from
472f9ba
to
df940ab
Compare
|
/lgtm |
|
LGTM label has been added. Git tree hash: ebfc731b5af7fbbdef0318e5c26dbfb0018c92c5
|
leogr
approved these changes
Sep 6, 2021
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: danpopSD, gauravgahlot, leogr The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
/hold cancel |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Signed-off-by: Gaurav Gahlot gauravgahlot0107@gmail.com
What type of PR is this?
/kind content
Any specific area of the project related to this PR?
/area blog