As your organization's infrastructure manager, the product's stability is your primary concern. We've experienced this precise challenge, which is why we need to learn Datree.
Datree is an open-source CLI(Command Line Interface) tool which supports Kubernetes users in their roles and it helps developers by preventing them to cause any errors in their kubernetes config. files before it reaches to production and causes any failure. The CLI solution is open source, enabling it to be supported by the Kubernetes community. t's far more effective than manual processes, which can lead to alert fatigue in developers already swamped with work.
Basically, we push our configuration files into git repository, and before the cluster gets updated, datree notifies the developers about any misconfiguration caused in the cluster. It can be various things such as error in schemas, violation of built-in rules, specific labels errors etc. Instead of relying on human observation and memory, developers are alerted early on, as soon as a misconfiguration takes place, and educated to prevent it from recurring. This process enables them to catch mistakes before their code moves to the next stage—and to become better developers.
Working
Datree's CLI integration provides a policy enforcement solution to run automatic checks for rule violations and misconfigurations in your Kubernetes manifest files. When rule violations are found, Datree produces an alert which guides the developer to fix the issue while explaining the reason behind the rule.
Datree's solution encompasses all development lifecycle phases such as Develop, Distribute, Deploy, Runtime. Hence, ensuring stability every step of the way. It's Policy check consists of three phases, they are:
- YAML Validation - verifies that the file is a valid YAML.
- Schema Validation - verifies that the file is a valid Kubernetes file.
- Policy Check - checks the YAML against your configured policy.
Using Datree, if we make a change through CLI tool in out local system, the change will be real time, the change will automatically reflect onto server. There are dozens of battle-tested rules for you to choose from, that cover different Kubernetes resources and use cases. We can even create our own policies, run our file against any policy, collaborate with other people etc.
Data privacy
Datree was developed with security as a top priority, ensuring that sensitive data is never unnecessarily used or exposed. Datree's policy evaluation process is entirely local. Only metadata is sent to our backend, which is used to display your policy check history in your dashboard. The metadata contains, Identification data, Software data, Policy data and evaluation data. The files and their contents are not sent to our backend, as the CLI performs the policy check on your machine. Datree does not have access to your files and their contents.
You can install it on your local system, by checking out the given link below : Datree