Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

CI/CD [clear filter]
Tuesday, December 11


Birds of a Feather: What Should a Container Build Manifest Look Like? - Nisha Kumar, VMware
We create containers by reusing several pieces of software from disparate locations, internal and external to our organization. We then rely on the providers (trusted or not) of the pieces to publish the software component list, or we run vulnerability and compliance scan tools against the fully built containers before pushing it to an internal registry. These methods are more fail safes than applying software delivery best practices, i.e., start from a well defined Bill of Materials (BoM).

Can we build a container from a well defined software component manifest? What would that manifest look like? This BoF is to discuss what we need in order to build a better container delivery pipeline that adheres to software delivery best practices. To kick us off, I will present a survey on currently used tools and practices.

avatar for Nisha Kumar

Nisha Kumar

Open Source Engineer, VMware
Nisha Kumar is an Open Source Engineer at VMware’s Open Source Technology Center. She is one of the maintainers of Tern, a container image inspection tool for OSS license compliance. She has spoken at several events including All Things Open, SCaLE, and a previous KubeCon.

Tuesday December 11, 2018 10:50am - 11:25am


Behind Your PR: How Kubernetes Uses Kubernetes to Run Kubernetes CI - Sen Lu & Benjamin Elder, Google
As a contributor of CNCF/Kubernetes project, you open issues/PRs in one or more of the Kubernetes repos, and the k8s-ci-robot will add proper labels, assign reviewers, trigger presubmits, and automatically merge your PR.

This talk will walk you through how Kubernetes CI is automated in Kubernetes clusters, how we use CRDs to manage the presubmit/CI jobs’ lifecycle, and how we automate contributor workflows on Github.

By the end of this talk, contributors to Kubernetes project should have a better understanding what happens behind the scenes for Kubernetes CI. Other github projects can also utilize our test-infra for their CI.

avatar for Benjamin Elder

Benjamin Elder

Software Engineer, Google
Ben first worked on Kubernetes around the 1.0 launch, implementing the initial version of the iptables kube-proxy for Google Summer of Code 2015. He later started working full time on Kubernetes in the summer of 2017, focusing on the test-infra, local clusters, build, and test with... Read More →
avatar for Sen Lu

Sen Lu

Software Engineer 软件工程师, Google
Sen started to contribute to Kubernetes Project since 2016. Sen is mainly focus on Kubernetes Testing Infrastructure, i.e. Prow, Kubetest, Gubernator, Boskos, and Testgrid...Sen自2016年开始为Kubernetes项目做出贡献。Sen主要专注于Kubernetes测试基础设施,即Prow,Kubetest,Gubernator,Boskos和Testgrid... Read More →

Tuesday December 11, 2018 11:40am - 12:15pm


Kubernetes and The GitOps Face-Off - Ricardo Aravena & Javeria Khan, Branch Metrics
During the last year, we have seen how Kubernetes GitOps has made organizations rethink CI/CD from storing all declarative aspects in git, reducing the use of manual kubectl commands and managing deployments using PRs.

In this talk, we will review some of the more popular GitOps open source tools such as Flux, Gitkube, Draft, and Skaffold, and how they work in real-world production environments. We'll give the side by side comparisons. Which one is better for the GCP, Azure or AWS? How do you integrate them with container building tools such as Kaniko, img, etc? Which ones are easier for developers to use in local environments?

By the end of the session, the audience will have a good understanding of the pros and cons of each these tools and how leverage templates such as the Kubernetes operator pattern to quickly deploy them in production ready environments.

avatar for Ricardo Aravena

Ricardo Aravena

Infrastructure Manager, Rakuten
Ricardo currently works at Rakuten as an Infrastructure Manager, automating everything in containers using open source and lately contributing to the Kata Containers project. He has been working in tech for more than 19 years and comes from a diverse professional background, having... Read More →
avatar for Javeria Khan

Javeria Khan

Senior System Engineer, Branch Metrics
Javeria Khan is a Senior Systems Engineer at Branch Metrics. While an electrical engineer by degree, she has been working in the software & systems domain for the past 5 years. In her current position, she is responsible for architecting and supporting a multi-region cloud infrastructure... Read More →

Tuesday December 11, 2018 1:45pm - 2:20pm


Migrating Jenkins to Kubernetes Broke Our Brains - Jonathan Hess & Loren Trout, SAP
Trying to migrate Jenkins to Kubernetes broke our brains. We migrated our Jenkins-based build system from plain VMs + Chef to Kubernetes running on VMs in our SAP corporate datacenter. Here is how we did it so that you can too.

We will walk through some of the nitty-gritty details to build a Kubernetes cluster from scratch on virtual machines, walking through our open-source example repo:

Provisioning the Cluster:
* building a solid cluster with kubeadm
* preparation of the underlying OS
* how to keep the base machines clean
* system and application monitoring

Running Jenkins on Kubernetes safely:
* our helm charts + shell scripts
* sizing the pods for builds
* persistent volumes and backups

Additionally, we will discuss some of the lessons we discovered along the way:
* What problems got solved migrating Jenkins to K8s?
* Lessons for other legacy apps

avatar for Jonathan Hess

Jonathan Hess

Software Engineer, SAP
Jonathan Hess is a versatile software engineer with 20 years of experience designing and building software for the cloud, enterprise, mobile and IoT. He is currently building the cloud infrastructure for the SAP Commerce Cloud. Prior to SAP, he was an engineer at Pinterest, building... Read More →
avatar for Loren Trout

Loren Trout

Devops Engineer, SAP
Loren Trout is a resourceful DevOps systems engineer with 20 years of experience designing and implementing systems for the enterprise around the globe. He is currently working on API integrations that run with-in the Kubernetes environment cloud infrastructure for the SAP Commerce... Read More →

Tuesday December 11, 2018 2:35pm - 3:10pm


Kustomize: Deploy Your App with Template Free YAML - Ryan Cox, Lyft
This talk will introduce Kustomize, a declarative application management system, that allows deployments to be described as template free YAML. It's approach will be contrasted with DSLs and template based schemes. Examples will be explored modeling sophisticated deployment scenarios for a variety of application types. It will end with a deep dive into continuous development workflows that leverage the integration between Kustomize and Skaffold.

avatar for Ryan Cox

Ryan Cox

Software Engineer, Lyft
Ryan Cox is a software engineer at Lyft focused on infrastructure resilience. His career includes the creation of large-scale ecommerce platforms and extensive time working on systems and infrastructure. He holds patents related to distributed filesystems and is an active member of... Read More →

Tuesday December 11, 2018 3:40pm - 4:15pm


CI/CD, Kubernetes, and Databases: Better Together - Niraj Tolia & Tom Manville, Kasten
Adding data to both your CI and CD pipeline is one of the last steps of the DevOps journey and probably the scariest given the impact of getting it wrong. This talk covers how one can safely combine Kubernetes, Databases, and the CI/CD pipeline to actually make the process safer and more stable that the status quo today and, in today’s rapid deployment culture, make databases “shift left” and reduces DBA burnout. This includes leveraging techniques and building an open-source toolkit to deliver automated schema changes, cloning, sandboxing, masking for production-like data in staging, and rapid data movement for fast database creation. More importantly, this talk will show how these benefits can help with internal culture shift by breaking down silos and bringing in a traditionally conservative database group more fully into the automation fold.

avatar for Tom Manville

Tom Manville

Software Engineer, Kasten
Tom graduated from the University of Michigan in 2011 and 2013 with a B.S.E. and M.S.E. in Computer Engineering where he researched low power computing and micro. After graduating, he joined Maginatics, a cloud based file system company which was acquired by EMC (now Dell EMC) late... Read More →
avatar for Niraj Tolia

Niraj Tolia

CEO, Kasten
Niraj Tolia is the CEO and Co-Founder at Kasten, an early-stage startup working on cloud-native storage infrastructure. Previously, he was the Senior Director of Software Engineering at EMC/Maginatics and was responsible for the CloudBoost family of products that focused on in-cloud... Read More →

Tuesday December 11, 2018 4:30pm - 5:05pm
Wednesday, December 12


Building Container Images on Your Kubernetes Cluster with Knative Build - Gareth Rushgrove, Docker
One of the components of the recently released Knative project is Knative Build. This introduces the Build and BuiltTemplate objects to the cluster, meaning you can build images and then push them to a registry, all from within your Kubernetes cluster. In this talk we will:

* Introduce the new API objects and show how they can be used
* Convert an existing project from an existing CI system over to Knative Build, including building source code, running tests and pushing to a container registry
* Look at some of the existing build templates using Kaniko, Docker, Buildpacks and more
* Show how to write your own build templates and build images
* Compare the current workflow with that of different CI systems to better understand what might be built next

avatar for Gareth Rushgrove

Gareth Rushgrove

Director Product Management, Snyk
Gareth works remotely from Cambridge, UK, helping to build interesting tools for people to better manage infrastructure and applications. He currently works at Snyk, working on developer-first security tooling. He has previously worked for the UK Government Digital Service focused... Read More →

Wednesday December 12, 2018 10:50am - 11:25am
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building


Automating Enterprise Governance Using the CI/CD Pipeline - Satyam Agarwala, ThoughtWorks & Mark Angrish, ANZ
ANZ bank has been on a transformation journey to achieve greater business agility.

A key initiative in that journey has been the creation of ANZ flavoured "paved roads" (inspired by Netflix), realised as self-service CI and CD pipelines, that allow delivery teams to deploy software to production (Google Kubernetes Engine) faster without compromising on quality, security or compliance.

A vital characteristic of the "paved roads" is the automation of the governance process the bank has in place for change management. These are driven by some of the strictest financial regulations in the world. This was achieved by integrating open source tooling such as Grafeas and Kritis into the pipelines to track build metadata and enforce policy.

In this talk we will discuss the benefits the approach provided in meeting the strict regulatory requirements while accelerating the journey to GKE.

avatar for Satyam Agarwala

Satyam Agarwala

Lead Consultant, ThoughtWorks Australia
Satyam is a Lead Consultant with ThoughtWorks Australia. He has worked with a variety of organisations, from startups to enterprises, across multiple geographies. His primary focus is helping clients increase speed of delivery of value to their customers through use of modern CI... Read More →
avatar for Mark Angrish

Mark Angrish

Tech Area Lead - Engineering Acceleration, ANZ
After leading the Engineering on the new ANZ app (which was recently number one in the app store!), Mark is now the manager of the Engineering Acceleration Tribe at ANZ, responsible for transforming the speed at which the bank delivers secure and quality software, at scale. From algorithmic... Read More →

Wednesday December 12, 2018 11:40am - 12:15pm
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building


CNCF Cross-Cloud CI - Adding Support for New Platforms - Andrew Kutz, VMware
The CNCF cross-cloud project deploys Kubernetes and popular cloud native applications to multiple platforms on a nightly basis. The results are available each day on the CNCF cross-cloud dashboard, https://cncf.ci. The dashboard helps visitors decide which platform to use when scheduling cloud native workloads. In this presentation, Andrew Kutz will review how to add support for a new platform to the cross-cloud testing project, common challenges faced when doing so, and tips for debugging failed deployments.

avatar for Andrew Kutz

Andrew Kutz

Staff Engineer II, VMware
Andrew Kutz has worked in IT professionally for over 15 years and in that time has worn many hats. From speaking at VMworld, editing books on blade servers, or blogging about Golang, Andrew has spent as much time in front of people has he has in front of a computer. At VMware Andrew... Read More →

Wednesday December 12, 2018 1:45pm - 2:20pm
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building


Using Prow for Testing Outside of K8s - Matt Landis, Amazon Web Services
Prow plays an important role in every kubernetes PR, but it doesn't need to stop there. We will discuss how Amazon uses prow to test EKS and why you should consider using prow as part of your test setup. We will briefly cover the components that prow, how to use them, how to create your own jobs and how to extend prow to meet your testing needs.

avatar for Matt Landis

Matt Landis

Software Development Engineer, Amazon Web Services
Matt Landis is a Software Development Engineer at Amazon working on AWS EKS. He has been at Amazon for 4 years. He joined AWS and the EKS team in June 2017 after spending 3 years in Amazon retail. His free time is spent playing table top games and taking his kids to hockey practi... Read More →

Wednesday December 12, 2018 2:35pm - 3:10pm
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building


Jenkins X: Continuous Delivery for Kubernetes - Carlos Sanchez, CloudBees
Jenkins X is a new open source CI/CD platform for Kubernetes based on Jenkins.
Jenkins X runs on Kubernetes and transparently uses on demand containers to run build agents and jobs, and isolate job execution. It enables CI/CD-as-code using Jenkins Pipelines and automated deployments of commits and pull requests using Skaffold, Helm and other popular tools. We will demo how to use Jenkins X on any Kubernetes cluster for fully automated CI and CD using a GitOps approach.

avatar for Carlos Sanchez

Carlos Sanchez

Senior Cloud Software Engineer, Adobe
Carlos Sanchez specializes in software automation, from build tools to Continuous Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of the Apache Software Foundation amongst other open source groups, contributing to... Read More →

Wednesday December 12, 2018 3:40pm - 4:15pm
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building


Continuous Delivery on Platforms is Better for Your Brain (and Business!) - Daniel Jones, EngineerBetter Ltd
Continuous Delivery on a self-service platform like Kubernetes makes it possible to exploit findings of cognitive psychology and neuroscience to increase the productivity and happiness of our teams.

This session will highlight fascinating academic research that answers:

• How can we improve willpower and decrease technical debt?

• Is the present bias real? How can we turn it to our advantage?

• Can you increase a team’s effective IQ?

• How do DevOps and Product Teams increase empathy, and what impact does empathy have on productivity? Why do you need a self-service platform for this to work?

The OECD and Bank Of England are both puzzled over missing productivity. Are we failing to exploit the benefits of modern technology by running our software businesses and teams as if they’re post-war factories, rather than continuously delivering?

avatar for Daniel Jones

Daniel Jones

CTO, EngineerBetter
Daniel Jones (Deejay, because his co-founder is also called Daniel) is CTO of UK Cloud Foundry consultancy EngineerBetter, who have improved value-delivery at the world’s largest banks, global wealth management firms, FTSE 100 retailers, industrial manufacturers, energy suppliers... Read More →

Wednesday December 12, 2018 4:30pm - 5:05pm
Tahoma 3/4 @ TCC The Conference Center (TCC) - Separate from WSCC building