BanyanOps have published a report stating that ‘Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities’, which include some of the sensational 2014 issues such as ShellShock and Heartbleed. The analysis also looks at user generated ‘general’ repositories and finds an even greater level of vulnerability.
Cisco is currently working on an open source ‘microservice-infrastructure’ project, which will support the continuous deployment of microservice-based applications, and is built upon technologies such as Mesos, Consul and Docker. Development is occurring primarily in the open, via the CiscoCloud Github account.
Weaveworks, creators of the Weave Docker virtual networking solution, have released a pre-alpha version of 'Weave Scope', an open source developer-focused container monitoring tool. Scope automatically generates a map of containers, enabling developers to visualise, monitor, and control applications by using the information exposed to drive deployment and operational decisions.
At the inaugural CoreOS Fest in San Francisco, the CoreOS team announced that the App Container specification (appc) has recently gained support from Google, Apcera, Red Hat and VMware. Google have added support for CoreOS’s appc implementation ‘rkt’ into Kubernetes, and Apcera have created a new implementation of appc, named ‘Kurma’.
Docker Inc have worked with the Center for Internet Security (CIS) to produce a benchmark document containing numerous recommendations for the security of Docker deployments. The benchmark was announced in a blog post ‘Understanding Docker Security and Best Practices’ by Diogo Mónica who was recently hired along with Nathan McCauley to lead the Docker Security team.
Apple have announced that the company’s popular Siri iOS-based intelligent personal assistant is powered on the backend by Apache Mesos, the open source cluster manager. The Mesosphere blog states that Apple have created a proprietary PaaS-like scheduler framework named J.A.R.V.I.S., which allows developers to deploy Siri services in a scalable and fault-tolerant manner.
CoreOS has released Tectonic, a new product created from the aggregation of the CoreOS stack and the Google Kubernetes platform. Tectonic packages up different container technology and puts an UI on top of containers which includes a management console, an integrated registry and other tools to automate deployment.
At Craft Conference 2015, Adrian Trenaman discussed the evolution of the Gilt.com architecture from a monolithic Ruby on Rails application to a cloud-based microservice ‘lots of small applications’ platform utilising Scala, Docker and AWS. Trenaman shared both technical and organisational lessons learnt from the past eight years, as Gilt has grown from a startup to a $1B company.
At Craft Conference 2015 in Budapest, Mary Poppendieck discussed the ‘new software development game’ and offered advice on how best to utilise containers, microservices and consumer-based contract tests to lower friction and limit risk within software systems.
Programming frameworks, containers, and application platforms are some of the components that make up the modern application architecture. Chip Childers of Cloud Foundry Foundation spoke at ApacheCon Conference last week about modern application architecture and the cloud native application platform.
Docker, Inc. has announced the release of Docker Engine 1.6, Registry 2.0, Compose 1.2, Swarm 0.2, and Machine 0.2. This release targets improved developer experience and performance.
Microsoft continues its push to adapt to the new realities brought about by the containers tsunami, having recently announced the Nano Server, a "minimal footprint" Windows Server, and Hyper-V containers, which provide virtual machine isolation capabilities to containers. The Nano Server has 92 percent fewer critical bulletins and requires 80 percent fewer reboots than a typical Windows Server.
At the inaugural O’Reilly Software Architecture conference, Bryan Cantrill shared lessons learnt from building a business around the early adoption of OS-virtualised containers. Core advice included; don’t innovate in too many directions at once; identify the technical differentiators, and focus on ease of use/adoptions for everything else; and don’t give up - technological revolutions take time.
Google has published the paper "Large-scale cluster management at Google with Borg", unveiling details on a technology that was very little spoken about in the past.
After introducing "Preconfigured Docker" as a new category of supported platforms in November 2014 with initial support for Java/GlassFish and Python 3.4 containers, Amazon Web Services (AWS) recently added Go versions 1.3 and 1.4 as the first additional language based on this new approach to its platform as a service offering AWS Elastic Beanstalk.