SREKubeCraft | Nikos Nikolakakis

~/posts/oauth2-proxy 21 min · 4283 words

$ OAuth2-Proxy - Securing MCP Servers on Kubernetes Before Hackers Find Them First

// MCP servers like DBHub expose databases, filesystems, and code execution over HTTP with zero authentication. Learn how to deploy OAuth2-Proxy on Kubernetes to add SSO, group-based access control, and session management to any MCP server without changing a single line of code.

~/posts/knative 15 min · 3111 words

$ Knative - The Platform Engineer's Guide to Serverless on Kubernetes

// A guide to Knative for SREs and Platform Engineers. Learn how Knative Serving, Eventing, and Functions bring serverless capabilities to any Kubernetes cluster with autoscaling, scale-to-zero, and event-driven architectures.

~/posts/pdb-management-operator 13 min · 2756 words

$ PDB Management Operator - Intelligent Pod Disruption Budget Automation for Kubernetes

// Learn how to automate Pod Disruption Budget management in Kubernetes using the PDB Management Operator. This guide explores the operator's architecture, dual configuration model, enforcement modes, and demonstrates how to use it for enterprise-grade availability management in ODA Canvas environments.

~/posts/kratix 13 min · 2744 words

$ Kratix - Building Self-Service Platform Capabilities for Kubernetes

// Learn how to use Kratix to build self-service platform capabilities for SREs and Platform Engineers. This guide explores Kratix's architecture, the Kratix CLI, pros and cons, and walks through a practical example building an on-demand Datadog stack.

~/posts/k8s-multi-tenancy 21 min · 4444 words

$ Building a Multi-Tenancy Platform with Capsule and vCluster - Hard vs Soft Isolation

// Learn how to build secure, scalable multi-tenant Kubernetes platforms using Capsule for namespace-based isolation and vCluster for virtual cluster deployment. Compare architectures, explore production use cases, and implement cost-effective multi-tenancy patterns with practical examples and complete demos.

~/posts/kubernetes-autoscaling-beyond-hpa 24 min · 5026 words

$ Kubernetes Autoscaling Beyond HPA - Event-Driven KEDA and VPA Resource Optimization

// Master advanced Kubernetes scaling strategies with KEDA for event-driven autoscaling and VPA for resource optimization. Real production examples, cost savings, and complete implementation guide for SRE teams.

~/posts/litmuschaos 9 min · 1770 words

$ Litmus Chaos - Enterprise-Grade Chaos Engineering for Kubernetes

// Discover Litmus, a CNCF incubating project that provides a complete chaos engineering platform with GitOps integration, extensive experiment library, and enterprise features for building resilient cloud-native applications.

~/posts/tetragon 10 min · 2101 words

$ Cilium Tetragon - Next-Generation Runtime Security for Kubernetes

// Explore Cilium Tetragon, an eBPF-based security observability and runtime enforcement platform that provides kernel-level protection for Kubernetes workloads with minimal overhead.

~/posts/nushell 24 min · 4942 words

$ Nushell for SREs - Modern Shell Scripting for Internal Tools

// Discover how Nushell empowers SREs and DevOps teams to build faster, more reliable internal CLI tools with structured data pipelines, robust scripting, and modern shell features.

~/posts/devpod 9 min · 1723 words

$ DevPod Open-Source Dev Environments as Code for SREs and Platform Engineers

// Discover how DevPod, an open-source Dev-Environments-as-Code solution, streamlines cloud-native development for SREs and platform engineers with consistent, secure, and reproducible development environments.