Containers
Category: Amazon Elastic Container Registry
Announcing Container Image Signing with AWS Signer and Amazon EKS
Introduction Today we are excited to announce the launch of AWS Signer Container Image Signing, a new capability that gives customers native AWS support for signing and verifying container images stored in container registries like Amazon Elastic Container Registry (Amazon ECR). AWS Signer is a fully managed code signing service to ensure trust and integrity […]
Announcing pull through cache for registry.k8s.io in Amazon Elastic Container Registry
Introduction Container images are stored in registries and pulled into environments where they run. There are many different types of registries from private, self-run registries to public, unauthenticated registries. The registry you use is a direct dependency that can have an impact on how fast you can scale, the security of the software you run, […]
Start Pods faster by prefetching images
Introduction Many AWS customers use Amazon Elastic Kubernetes Service (Amazon EKS) to run machine learning workloads. Containerization allows machine learning engineers to package and distribute models easily, while Kubernetes helps in deploying, scaling, and improving. When working with customers that run machine learning training jobs in Kubernetes, we ‘ve seen that as the data set […]
Enable continuous deployment based on semantic versioning using AWS App Runner
Introduction In this modern cloud era, customers automatically build, test, and deploy the new version of their application multiple times a day. This common scenario in the software development life cycle creates faster delivery of features, bug fixes, and other updates to end users. One key aspect of continuous deployment is semantic versioning, a system […]
How to rapidly scale your application with ALB on EKS (without losing traffic)
To meet user demand, dynamic HTTP-based applications require constant scaling of Kubernetes pods. For applications exposed through Kubernetes ingress objects, the AWS Application Load Balancer (ALB) distributes incoming traffic automatically across the newly scaled replicas. When Kubernetes applications scale down due to a decline in demand, certain situations will result in brief interruptions for end […]
GitOps-driven, multi-Region deployment and failover using EKS and Route 53 Application Recovery Controller
One of the key benefits of the AWS Cloud is it allows customers to go global in minutes, easily deploying an application in multiple Regions around the world with just a few clicks. This means you can provide lower latency and a better experience for your customers at minimal cost while targeting higher availability service-level […]
Preventing Kubernetes misconfigurations using Datree
David Feldstein, Sr. Containers Specialist AWS co-authored with Shimon Tolts, AWS Community Hero, CEO & Co-founder Datree.io Introduction Kubernetes has taken the world by storm, according to the Cloud Native Computing Foundation’s (CNCF) Annual Survey of 2021, with 96% of organizations as either using or evaluating Kubernetes. Kubernetes is a production-grade container orchestration platform that […]
Amazon ECR in Multi-Account and Multi-Region Architectures
Introduction Amazon Elastic Container Registry (Amazon ECR) is a fully managed container registry offering high-performance hosting, so you can reliably deploy application images and artifacts anywhere. It stores container images and artifacts that deploy application workloads across AWS services as well as non-AWS environments. Amazon ECR is a regional service, where each Region in each […]
Policy management in Amazon EKS using jsPolicy
Introduction jsPolicy is an open-source framework for managing validating or mutating admission control policies for Amazon Elastic Kubernetes Service (Amazon EKS) clusters using JavaScript (or TypeScript), which is similar to the way AWS Identity and Access Management (IAM) manages AWS accounts and resource access. It’s also possible to write the entire jsPolicy in a separate file and […]
Architecting for resiliency on AWS App Runner
AWS App Runner is one of the simplest ways to run your containerized web applications and APIs on AWS. App Runner abstracts away the cloud resources needed for running your web application or API, including load balancers, TLS certificates, auto-scaling, logs, metrics, tracing (such as observability), as well as the underlying compute resources. With App Runner, […]