Alexandre Vazquez

Optimizing Kubernetes Scheduling with Node Affinity Rules: Trade-offs and Best Practices

by Alexandre Vazquez
2025-11-03

Discover the power of Node Affinity Rules in Kubernetes for efficient pod scheduling and resource allocation. Learn about required and preferred rules, their trade-offs, and the impact on workload rescheduling in case of node failure. Explore the challenges of pod anti-affinity, taints, and how to make informed decisions for optimal node affinity. Prepare your production environment for unexpected outages with the right node affinity strategy. Find out more in this comprehensive guide.

Integrating Kyverno CLI into CI/CD Pipelines with GitHub Actions

by Alexandre Vazquez
2025-11-03

Discover how to use Kyverno CLI to enforce Kubernetes policies in a CI/CD pipeline setup. This guide demonstrates step-by-step integration with GitHub Actions to ensure your Kubernetes configurations align with best practices before deployment.

Using Kubernetes Ingress on OpenShift: How Routes Are Generated and When to Use Each

by Alexandre Vazquez
2025-09-222025-09-22

OpenShift supports both its native Route resources and Kubernetes Ingress. While Ingress objects are automatically translated into Routes by the OpenShift Router, this approach comes with caveats. In this article we break down how the translation works, how annotations can tune behavior, and when you should prefer Routes directly to unlock advanced features like weighted backends, wildcard hosts, or special TLS modes.

Talos: A Modern Kubernetes-Optimized Linux Distribution

by Alexandre Vazquez
2025-07-132025-07-13

Talos Linux is a secure, minimal OS built for Kubernetes. Explore its architecture, unique benefits, real-world applications, and how it compares to traditional Linux distributions.

Introducing XSLTPlayground.com — The Modern Way to Test, Optimize, and Debug XSLT in Real Time

by Alexandre Vazquez
2025-07-062025-07-06

Discover XSLTPlayground.com — a free, web-based tool to edit, test, and optimize XSLT in real time. Supports multi-input, parameter sync, performance insights, and more.

Helm v3.17 Introduces take-ownership: What It Solves and When To Use It

by Alexandre Vazquez
2025-06-122025-06-12

Helm v3.17 introduces the `–take-ownership` flag to help Kubernetes users handle release migrations, renaming, and GitOps workflows more gracefully — without running into object ownership conflicts. Learn what it solves, its caveats, and when to use it.

Extending Kyverno Policies: Creating Custom Rules for Enhanced Kubernetes Security

by Alexandre Vazquez
2024-11-042024-11-04

Extending Kyverno policies enables Kubernetes administrators to establish and enforce tailored security and operational practices within their clusters. By leveraging Kyverno’s capabilities in validation, mutation, and generation, you can automate compliance, streamline operations, and reinforce security standards seamlessly.

Kyverno: A Detailed Way of Enforcing Standard and Custom Policies

by Alexandre Vazquez
2024-10-292024-10-29

Learn how Kyverno extends beyond Kubernetes’ built-in Pod Security Admission (PSA) to provide a flexible and powerful way to enforce policies across your cluster. This post covers installation, policy deployment, and compliance reporting using Kyverno.

Kubernetes Policy Enforcement: Understanding Pod Security Admission (PSA)

by Alexandre Vazquez
2024-10-122024-10-12

Kubernetes has introduced the Pod Security Admission (PSA) mechanism to replace the deprecated Pod Security Policies (PSP). This article dives into the key capabilities Kubernetes offers for policy enforcement out of the box, particularly focusing on the PSA framework. We will explore the core Pod Security Standards, how PSA improves security practices, and how to configure policies using Kubernetes labels to apply them to different namespaces.

Understanding Helm Hooks: A Guide to Using Hooks in Your Helm Charts

by Alexandre Vazquez
2024-09-22

Learn how to leverage Helm hooks to control the lifecycle of your Kubernetes deployments. This guide covers all available hooks, their use cases, and important annotations for fine-tuning your Helm charts