Engineering Glossary

From fundamental principles to cutting-edge practices, this glossary covers the full spectrum of software engineering terminology.

DevOps
Cloud Computing
Git
Containerization & Orchestration

"As code"

Defining and managing infrastructure, configurations, or processes using code, enabling version control, automation, and reproducibility.
DevOps

"Nines"

Measure of system availability, expressed as a percentage. E.g., "five nines" means 99.999% uptime, allowing for minimal downtime.
DevOps

"Single Pane of Glass"

Unified display or interface that integrates data from multiple sources, providing a comprehensive view of system status or operations.
DevOps

A/B Testing

Comparing two versions of a webpage or app to determine which performs better, based on user interaction and conversion rates.
DevOps

AIOps (Artificial Intelligence Operations)

Using AI and machine learning to enhance IT operations, automating tasks and providing insights for better decision-making.
DevOps

ALB (Application Load Balancing)

Distributes incoming application traffic across multiple targets to improve availability and fault tolerance.
DevOps

API

Application Programming Interface; set of protocols and tools for building software applications and enabling communication between systems.
DevOps

API Discovery

Process of identifying and documenting available APIs within an organization or from external sources.
DevOps

API Endpoint

Specific URL where an API can be accessed and where requests are sent to interact with a server or service.
DevOps

API Gateway

Manages, secures, and routes API requests, acting as a single entry point for multiple microservices or backend systems.
DevOps

API Management

Process of creating, publishing, documenting, and analyzing APIs in a secure environment.
DevOps

API Monitoring

Tracking API performance, availability, and usage to ensure optimal functionality and identify issues.
DevOps

API Response Time

The duration between sending a request to an API and receiving the response, crucial for performance evaluation.
DevOps

API Security

Measures and practices to protect APIs from unauthorized access, attacks, and data breaches.
DevOps

API Versioning

Managing different versions of an API to maintain compatibility while allowing updates and improvements.
DevOps

ASG (Auto Scaling Group)

Feature in cloud computing that automatically adjusts the number of instances based on defined conditions.
DevOps

ASP.Net Core Monitoring

Observing and analyzing the performance and behavior of applications built with ASP.Net Core framework.
DevOps

ATO (Account Takeover)

Type of identity theft where an attacker gains unauthorized access to a user's account.
DevOps

AWS (Amazon Web Services)

Cloud computing platform offering a wide range of services for computing, storage, networking, and more.
DevOps

AWS App Development Tools

Suite of tools provided by AWS for building, testing, and deploying applications on their cloud platform.
DevOps

AWS CLI

Command-line interface for interacting with AWS services, allowing users to manage resources and automate tasks.
DevOps

AWS CloudWatch

Monitoring and observability service for AWS resources and applications, providing metrics, logs, and alarms.
DevOps

AWS CodeDeploy

Fully managed deployment service that automates software deployments to various compute services.
DevOps

AWS CodePipeline

Continuous delivery service for fast and reliable application and infrastructure updates.
DevOps

AWS EC2

Elastic Compute Cloud; scalable computing capacity in the AWS cloud for running virtual servers.
DevOps

AWS ELB

Elastic Load Balancing; automatically distributes incoming application traffic across multiple targets.
DevOps

AWS Lambda

Serverless compute service that runs code in response to events and automatically manages the underlying resources.
DevOps

AWS Managed Services

Ongoing management of AWS infrastructure, allowing customers to focus on their applications and business.
DevOps

AWS Monitoring

Process of tracking and analyzing the performance, health, and usage of AWS resources and applications.
DevOps

AWS RDS

Relational Database Service; managed service for setting up, operating, and scaling relational databases in the cloud.
DevOps

AWS RDS Postgres Monitoring

Tracking and analyzing the performance and health of PostgreSQL databases running on AWS RDS.
DevOps

AWS S3

Simple Storage Service; object storage service offering industry-leading scalability, data availability, and performance.
DevOps

AWS S3 Cost Optimization

Strategies and practices to reduce costs associated with storing and accessing data in AWS S3.
DevOps

AWS Security

Set of tools, services, and best practices for protecting data, applications, and infrastructure in the AWS cloud.
DevOps

Acceptance Test-Driven Development (ATDD)

Software development approach where acceptance tests are written before the code, guiding implementation.
DevOps

Active Directory

Microsoft's directory service for Windows domain networks, managing users, computers, groups, and other objects.
DevOps

Advanced Rate Limiting

Technique to control the rate of incoming requests to an API or service, preventing overload and ensuring fair usage.
DevOps

Agent

Software component that performs automated tasks, often used in monitoring, data collection, or system management.
DevOps

Agile

Iterative approach to software development emphasizing flexibility, collaboration, and rapid delivery of working software.
DevOps

Agile Manifesto

Document outlining values and principles of Agile software development, prioritizing individuals, working software, and adaptability.
DevOps

Agile Methodology

Set of practices based on Agile principles, focusing on iterative development, team collaboration, and customer feedback.
DevOps

Agile Organization

Company structure that emphasizes adaptability, quick response to change, and continuous improvement.
DevOps

Agile Project Management

Applying Agile principles to project management, focusing on iterative planning, frequent delivery, and team empowerment.
DevOps

Agile Software Development

Iterative approach to building software, emphasizing flexibility, collaboration, and rapid delivery of working features.
DevOps

Ajax Requests

Technique for creating fast, dynamic web pages by exchanging small amounts of data with the server behind the scenes.
DevOps

Alerting

System for notifying relevant personnel about critical events or issues in IT infrastructure or applications.
DevOps

Amazon Aurora

Fully managed relational database engine compatible with MySQL and PostgreSQL, designed for the cloud.
DevOps

Amazon Web Services (AWS)

A cloud platform offering a wide range of services like computing power, storage, and databases, enabling scalable, flexible solutions.
DevOps

Android Deployment

Process of distributing and installing Android applications on devices or making them available through app stores.
DevOps

Android Emulator

Software tool that simulates Android devices on a computer for testing and development purposes.
DevOps

Android Studio

Official integrated development environment (IDE) for Android app development, offering a comprehensive set of tools and features.
DevOps

Anomaly Detection

Process of identifying unusual patterns or behaviors that deviate from expected norms in data or system behavior.
DevOps

Ansible

Open-source automation tool for configuration management, application deployment, and task automation.
DevOps

Antifragile

Quality of systems that gain strength from disorder or stress, becoming more resilient in the face of challenges.
DevOps

Apache

Popular open-source web server software that can run on various platforms, known for its reliability and extensive feature set.
DevOps

App Store Connect

Apple's platform for managing apps, viewing analytics, and submitting to the App Store.
DevOps

AppDynamics

Application performance management and IT operations analytics platform for monitoring and optimizing application performance.
DevOps

Application Containerization

Packaging software code and dependencies into lightweight, portable containers for consistent deployment across environments.
DevOps

Application Firewall

Security system that monitors, filters, and blocks HTTP/HTTPS traffic to and from web applications.
DevOps

Application Infrastructure

The hardware, software, and networking components required to run and support an application.
DevOps

Application Lifecycle Management

Process of managing an application from ideation through retirement, including development, testing, and maintenance.
DevOps

Application Migration

Process of moving an application from one environment to another, often involving cloud or platform transitions.
DevOps

Application Performance Monitoring (APM)

Tools and practices for monitoring and managing the performance and availability of software applications.
DevOps

Application Platform

Software framework that provides a foundation for developing and running applications, often including runtime services and APIs.
DevOps

Application Program Interface (API)

Set of protocols, routines, and tools for building software applications and enabling communication between different software systems.
DevOps

Application Release Automation (ARA)

Process of packaging and deploying applications automatically across various environments and platforms.
DevOps

Application Security

Measures taken to improve the security of an application by finding, fixing, and preventing vulnerabilities.
DevOps

Application Team

Group responsible for developing, maintaining, and improving a specific application or set of applications.
DevOps

Application Whitelisting

Security practice that specifies which applications are permitted to run on a system, blocking all others.
DevOps

Application Workflow

Sequence of tasks or processes within an application, often automated to improve efficiency and consistency.
DevOps

Aptly

Debian repository management tool that makes it easy to mirror existing repositories and create new ones.
DevOps

Artifact

Any file or object produced during the software development process, such as compiled code, documentation, or test results.
DevOps

Artifactory

Repository manager for storing and managing software packages, artifacts, and dependencies.
DevOps

Artifacts

Byproducts of software development, including executables, libraries, documentation, and other files created during the process.
DevOps

Artificial Intelligence (AI)

Computer systems capable of performing tasks that typically require human intelligence, such as learning and problem-solving.
DevOps

Asgard

Open-source web-based tool for cloud management and application deployment, primarily used with Amazon Web Services.
DevOps

Asterisk

Open-source framework for building communications applications, particularly used for creating custom telephone systems.
DevOps

Atom

Open-source text and source code editor developed by GitHub, known for its customizability.
DevOps

Attack Surface

Total sum of vulnerabilities in a given system that are accessible to an attacker.
DevOps

Attack Vector

Method or pathway used by a malicious actor to gain unauthorized access to a computer or network.
DevOps

Audit Log

Chronological record of system activities, providing a trail for tracking user actions and system events.
DevOps

Auditd

Linux daemon that monitors and logs system activities to detect security violations.
DevOps

Authentication Factor

Piece of information or process used to verify a user's identity, such as passwords, biometrics, or security tokens.
DevOps

Automated Builds

Process of compiling source code into executable software without manual intervention, often part of CI/CD pipelines.
DevOps

Automation

Use of technology to perform tasks with minimal human intervention, improving efficiency and reducing errors.
DevOps

Autonomy

Degree of independence and self-governance given to teams or systems in making decisions and performing tasks.
DevOps

Awsbox

Tool for deploying node.js apps to Amazon Web Services, simplifying the process of setting up and managing instances.
DevOps

Azure

Microsoft's cloud computing platform providing a wide range of services for building, testing, deploying, and managing applications.
DevOps

Back-end

Server-side of a website or application, responsible for data storage, security, and business logic.
DevOps

Backup

Copy of data created to protect against loss or damage, often stored separately from the original for recovery purposes.
DevOps

Bad/Threat Actor

Individual or entity that attempts to exploit vulnerabilities in systems or networks for malicious purposes.
DevOps

Baklava code

Term describing code that has too many layers, making it overly complex and difficult to understand or maintain.
DevOps

Bamboo

Continuous integration and deployment server by Atlassian, automating the building, testing, and deployment of software.
DevOps

Bare-metal

Physical computer server dedicated to a single tenant, not virtualized or shared among multiple users.
DevOps

Barkeep

Open-source web-based code review system that facilitates collaborative code reviews and discussions.
DevOps

Bash

Unix shell and command language, widely used for scripting and automating tasks in Unix-like operating systems.
DevOps

Bastion host

Specially designed system on a network specifically intended to withstand attacks, usually placed at the edge of a network.
DevOps

Bazel

Open-source build and test tool that enables fast, reproducible builds across multiple platforms and languages.
DevOps

Beats

Lightweight data shippers for various types of data, part of the Elastic Stack for log and metrics collection.
DevOps

Behavior-Driven Development (BDD)

Software development approach that focuses on defining the behavior of an application based on user stories.
DevOps
stash entry

stash entry

A single set of stashed changes in Git, which can be reapplied later to the working directory.
status checks

status checks

Automated tests or processes that run when changes are proposed in a Git repository, ensuring code quality and compatibility.
subscription

subscription

Notifications or updates a user receives about activity in Git repositories they're interested in or contributing to.
superproject

superproject

The main Git repository that contains submodules, managing references to specific versions of nested repositories.
symref

symref

A symbolic reference in Git that points to another reference, most commonly used for HEAD pointing to the current branch.
tag object

tag object

A Git object containing metadata about a tag, including the tagger, date, and optional message.
team

team

A group of users on a Git platform with shared access permissions to repositories within an organization.
team maintainer

team maintainer

A user with administrative privileges for managing a team's membership and access rights in a Git organization.
timeline

timeline

A chronological display of events and activities in a Git repository or user profile on hosting platforms.
topic branch

topic branch

A short-lived Git branch created to develop a specific feature or fix a particular issue.
topics

topics

Keywords or categories assigned to Git repositories to help users discover related projects on hosting platforms.
traffic graph

traffic graph

A visual representation of visitor activity and clone statistics for a Git repository on hosting platforms.
transfer

transfer

The process of moving Git objects between repositories during push, fetch, or clone operations.
tree

tree

A Git object representing a directory structure, containing references to blobs (files) and other trees (subdirectories).
tree object

tree object

A Git object that stores the hierarchy of files and directories in a repository at a specific point in time.
tree-ish (also treeish)

tree-ish (also treeish)

A Git term referring to an object that resolves to a tree, such as a commit, tag, or tree.
unborn

unborn

A state of a Git branch that has no commits yet, typically seen when initializing a new repository.
unmerged index

unmerged index

The state of the Git index containing conflicting changes from different branches during a merge operation.
unreachable object

unreachable object

A Git object not accessible from any reference, potentially subject to garbage collection if not recovered.
upstream branch

upstream branch

The remote branch that a local branch is set to track, used as a reference for pull and push operations.
user

user

An individual account on a Git platform, associated with personal repositories and contributions.
user-to-server request

user-to-server request

An authenticated request from a Git client to a server, typically for operations like push or fetch.
username

username

The unique identifier for a user account on Git platforms, used for authentication and mention notifications.
visible team

visible team

A team in a Git organization that is visible to all members of the organization, as opposed to secret teams.
watch

watch

A feature allowing users to receive notifications about activity in Git repositories they're interested in.
watching notifications

watching notifications

Alerts received for all notable events in a watched Git repository, including issues, pull requests, and releases.
web notifications

web notifications

Alerts displayed on Git platforms' web interfaces, notifying users of relevant activity or mentions.
working area

working area

The directory on your local machine where you modify files before staging and committing them in Git.
working tree

working tree

The set of files and directories in your project that are currently checked out and available for editing.
worktree

worktree

A Git feature allowing multiple working directories to be associated with a single repository.
write access

write access

Permission to make changes to a Git repository, including pushing commits and modifying branches.

Model Versioning

Managing different iterations of machine learning models in cloud-based development pipelines.

Module Registry

Repository for storing and managing reusable software components in cloud development environments.

Molecular Data Storage

Experimental technique using molecules to store digital data, potentially integrated with cloud systems.

Multi-Account Management

Tools and practices for managing multiple cloud accounts within an organization.

Multi-Cloud

Using services from multiple cloud providers in a single architecture, optimizing for cost, performance, and redundancy.

Multi-Cloud Integration Hubs

Centralized platforms for managing data and application integrations across multiple cloud providers.

Multi-Cloud Load Balancing

Distributing workloads across multiple cloud providers to optimize performance and reliability.

Multi-Cloud Management

Tools and practices for administering resources and applications across multiple cloud providers.

Multi-Cloud Network Fabrics

Technologies enabling seamless networking across multiple cloud provider environments.

Multi-Cloud Service Mesh Management

Coordinating microservices communication and security across multiple cloud environments.

Multi-Factor Authentication (MFA)

Security system requiring two or more verification methods to access cloud resources.

Multi-Model Databases

Database systems supporting multiple data models (e.g., document, graph, relational) in a single backend.

Multi-Region Replication

Copying data across multiple geographic regions in cloud environments for redundancy and disaster recovery.

Multi-access Edge Computing (MEC)

Bringing cloud capabilities closer to the network edge for improved performance and reduced latency.

Multi-cloud Cost Management

Tools and strategies for monitoring and optimizing expenses across multiple cloud providers.

Multi-cloud Cost Optimization

Strategies to minimize expenses and maximize efficiency when using multiple cloud providers.

Multi-cloud Disaster Recovery

Implementing backup and failover systems across multiple cloud providers for enhanced resilience.

Multi-cloud Networking

Connecting and managing network resources across multiple cloud provider environments.

Multi-cloud Security

Strategies and tools for protecting data and applications across multiple cloud provider environments.

Multicloud Data Controllers

Tools for managing and orchestrating data across multiple cloud provider environments.

Multicloud Networking Fabric

Unified network architecture spanning multiple cloud providers for seamless connectivity.

Multimodal AI Platforms

Cloud services supporting AI models that can process and integrate multiple types of data (e.g., text, image, audio).

Multimodal Cloud Interfaces

User interfaces that combine multiple input/output methods (e.g., voice, touch, gesture) for cloud service interaction.

Multimodal Data Fusion Platforms

Cloud services for integrating and analyzing data from various sources and formats.

NAT Gateway

Service that enables private subnet instances to connect to the internet or other AWS services.

Namespace

Isolated environment within a cluster to organize and manage resources in cloud platforms.

Natural Language Cloud Command Interfaces

Systems allowing users to interact with cloud services using conversational language.

Natural Language Processing (NLP)

AI technology for understanding, interpreting, and generating human language in cloud environments.

Natural Language Processing as a Service

Cloud-based platforms offering pre-built NLP models and APIs for text analysis and generation.

Near-Edge Data Centers

Smaller data centers located closer to end-users for reduced latency in cloud service delivery.

Neomorphic Design for Cloud Interfaces

UI design approach mimicking physical objects for intuitive cloud service interaction.

Network ACLs

Rules controlling inbound and outbound traffic for subnets in cloud virtual networks.

Network Access Control List (NACL)

Stateless firewall for controlling traffic in and out of cloud subnets, enhancing network security.

Network Address Translation (NAT)

Process of modifying network address information to route traffic between private and public networks.

Network Function Virtualization (NFV)

Virtualizing network services traditionally run on proprietary hardware in cloud environments.

Network Observability Platforms

Tools for monitoring, analyzing, and troubleshooting cloud network performance and behavior.

Network Performance Monitoring

Tools and practices for measuring and optimizing network performance in cloud environments.

Network Service Mesh

Technology for managing and securing service-to-service communication in cloud-native environments.

Network Telemetry

Collecting and analyzing network data for visibility and troubleshooting in cloud environments.

Network Traffic Optimization

Techniques for improving the efficiency and performance of data flow in cloud networks.

Network-as-Code

Defining and managing network infrastructure using code in cloud environments, enabling automated and version-controlled networking.

Neural Architecture Search (NAS) as a Service

Cloud-based automated design of optimal neural network architectures for specific AI tasks.

Neuro-Symbolic AI Frameworks

Cloud platforms combining neural networks with symbolic reasoning for more robust AI systems.

Neuro-symbolic AI Systems

Cloud-based AI integrating neural networks and symbolic AI for enhanced reasoning capabilities.

Neuromorphic Cloud Computing

Cloud services using brain-inspired computing architectures for improved efficiency in AI tasks.

Neuromorphic Computing Services

Cloud platforms providing access to brain-inspired computing architectures for AI applications.

Neuromorphic Computing as a Service

Cloud-based offerings of brain-inspired computing architectures for specialized AI workloads.

Neuromorphic Hardware Acceleration

Cloud-based AI processing using brain-inspired chip designs for improved efficiency and performance.

NewSQL Databases

Cloud databases combining the scalability of NoSQL with the ACID guarantees of traditional relational databases.

NoSQL Database (e.g., Amazon DynamoDB, Azure Cosmos DB)

Non-relational databases designed for flexible, scalable data storage and retrieval in cloud environments.

Non-Volatile Memory Express (NVMe) over Fabrics

High-performance storage protocol for accessing SSDs over network fabrics in cloud environments.

OLAP (Online Analytical Processing)

Technology for quickly analyzing multidimensional data from multiple perspectives in cloud databases.

Object Storage

Cloud storage for unstructured data, accessed via APIs and organized as objects rather than files.

Object Storage (e.g., Amazon S3, Azure Blob Storage)

Scalable cloud storage services for unstructured data, accessible via APIs, ideal for large-scale data storage and retrieval.

Object Storage Gateways

Devices or software providing local access to cloud-based object storage systems.

Observability Data Lakes

Centralized repositories for storing and analyzing large volumes of observability data in cloud environments.

Observability Data Pipelines

Systems for collecting, processing, and routing observability data in cloud environments.

Observability-Driven Development

Software development approach prioritizing built-in monitoring and debugging in cloud applications.

Olfactory Data Processing in the Cloud

Analyzing and interpreting scent-related data using cloud computing resources, enabling digital olfactory applications.

On-Device Machine Learning

Running ML models on edge devices, reducing reliance on cloud processing for certain tasks.

Online Analytical Processing (OLAP)

Technology for rapid analysis of multidimensional data in cloud-based data warehouses.

OpenFaaS

Open-source framework for building serverless functions with Docker and Kubernetes in cloud environments.

Operator Pattern

Kubernetes extension for automating application management tasks in cloud-native environments.

Optical Computing in the Cloud

Using light-based processing for high-speed, energy-efficient computation in cloud data centers.

Over-the-Air (OTA) Updates

Remote software updates for devices connected to cloud services, often used for IoT.

PCI DSS Compliance in the Cloud

Adhering to Payment Card Industry Data Security Standard requirements in cloud environments.

Partitioning

Dividing large datasets or databases into smaller, more manageable parts in cloud storage systems.

Pay-as-you-go Model

Pricing structure where users only pay for the cloud resources they actually use.

Pay-as-you-go Pricing

Billing model where customers are charged based on their actual usage of cloud resources.

Pay-per-execution Model

Pricing scheme where users are billed only when their serverless functions are invoked.

Peering Connection

Direct network link between two virtual private clouds, often in different accounts or regions.

Penetration Testing in the Cloud

Simulated cyberattacks to evaluate the security of cloud-based systems and applications.

Persistent Memory

Non-volatile memory that combines speed of DRAM with data persistence, used in cloud storage systems.

Persistent Volumes

Storage resources in cloud environments that exist independently of any specific pod or container.

Photonic Integrated Circuits for Data Centers

Light-based chips for high-speed data processing in cloud infrastructure, improving energy efficiency.

Pipeline as Code

Defining and managing continuous integration/deployment workflows using code in cloud environments.

Point-in-Time Recovery

Ability to restore cloud-based data to a specific moment in the past, enabling granular data recovery options.

Policy Enforcement

Implementing and maintaining security and compliance rules across cloud resources.

Policy Management

Creating, updating, and enforcing rules governing cloud resource usage and security.

Polyglot FaaS (Function as a Service)

Serverless platform supporting multiple programming languages for cloud function development.

Polyglot Persistence

Using multiple data storage technologies to handle varied data storage needs in cloud applications.

Polyglot Serverless Development

Creating serverless applications using multiple programming languages in cloud environments.

Post-Migration Optimization

Refining and improving cloud-based systems after initial migration from on-premises.

Post-Quantum Cryptography Implementation

Deploying encryption methods resistant to quantum computer attacks in cloud systems.

Power Usage Effectiveness (PUE)

Metric for measuring energy efficiency of cloud data centers, comparing total power consumption to IT equipment power usage.

Predictive Auto-Scaling

Using AI to anticipate resource needs and adjust cloud capacity automatically, optimizing performance and cost-efficiency.

Predictive Capacity Planning

Using data analytics and machine learning to forecast future cloud resource requirements and optimize infrastructure.

Predictive Maintenance

Using data analytics to anticipate and prevent equipment failures in cloud infrastructure.

Prescriptive Analytics

Advanced analytics providing recommendations for actions in cloud-based decision making.

Pricing Calculator

Tool for estimating costs of cloud services based on expected usage, helping in budgeting and resource planning.

Privacy-Enhancing Computation (PEC)

Techniques for processing sensitive data while preserving privacy in cloud environments.

Privacy-Enhancing Technologies (PETs)

Tools and methods for protecting personal data privacy in cloud computing, ensuring compliance and user trust.

Privacy-Preserving Analytics

Techniques for analyzing data in the cloud while maintaining individual privacy.

Privacy-Preserving Data Mining

Extracting useful information from large datasets without compromising individual privacy in the cloud.

Privacy-Preserving Data Science

Performing data analysis in the cloud while protecting sensitive information, balancing insights with data privacy.

Private 5G Networks

Dedicated 5G networks deployed for specific enterprise use, often integrated with cloud services.

PrivateLink

Service enabling private connectivity between VPCs, AWS services, and on-premises applications.

Privileged Access Management (PAM)

Tools for securing, controlling, and monitoring access to critical cloud resources and data.

Probabilistic Data Structures in the Cloud

Memory-efficient data structures for approximate data analysis in cloud environments.

Programmable Data Planes

Network architectures allowing customization of data packet processing in cloud infrastructure.

Ceph RadosGW

Object storage gateway for Ceph, providing S3-compatible API for container storage needs in Kubernetes.

Cgroup (Control Group)

Linux kernel feature for limiting, prioritizing, and isolating resource usage of container groups.

Change Data Capture (CDC)

Technique for tracking and capturing changes in databases, useful in microservices architectures.

Chaos Engineering in CI/CD

Practice of intentionally injecting failures in CI/CD pipelines to improve system resilience.

Chaos Mesh for Reliability Testing

Platform for simulating various abnormal scenarios in Kubernetes environments to test reliability.

Checkov for IaC Security Scanning

Static code analysis tool for detecting misconfigurations in Infrastructure as Code deployments.

Cilium

Open-source networking, observability, and security solution for container workloads based on eBPF.

Cilium Service Mesh

eBPF-powered service mesh offering high-performance traffic management and security for microservices.

Cilium's Hubble for Network Observability

Observability platform for Kubernetes providing deep visibility into container network flows.

Cilium's eBPF Datapath

High-performance networking mode in Cilium using extended Berkeley Packet Filter for packet processing and security.

CircleCI

Continuous integration and delivery platform supporting containerized application testing and deployment.

Circuit Breaker Pattern

Fault tolerance pattern preventing cascading failures in distributed containerized systems.

Circuit Breaking

Technique to detect failures and prevent system overload in microservices architectures, enhancing resilience.

Claim Check Pattern for Large Messages

Design pattern for handling large payloads in microservices by storing data externally, improving efficiency.

Clair for Static Image Analysis

Open-source tool for static analysis of vulnerabilities in container images, enhancing security.

Cloud Controller Manager

Kubernetes component managing interactions between cluster and cloud provider APIs, enabling cloud integration.

Cloud Native Application Bundle (CNAB)

Specification for packaging and managing distributed applications across different environments.

Cloud-Native Buildpacks

Tooling for building container images from source code without Dockerfiles, adhering to best practices.

Cloud-Native Design Patterns

Architectural patterns specifically tailored for distributed, containerized applications in cloud environments.

CloudEvents

Specification for describing event data in common formats, facilitating event-driven architectures in cloud environments.

CloudEvents Specification

Isolation technique in containerized microservices to prevent failure propagation across the system.

Cluster

Group of servers or other resources that work together as a single system to provide high availability.

Cluster API

Kubernetes project for declarative management and provisioning of clusters using Kubernetes-style APIs.

Cluster API Provider

Implementation of Cluster API for specific infrastructure providers, enabling cluster lifecycle management.

Cluster Autoscaler

Kubernetes component that automatically adjusts the size of a cluster based on resource demands.

Cluster Capacity Planning

Process of estimating and allocating resources needed for container workloads in a cluster.

Cluster Federation

Mechanism for coordinating multiple Kubernetes clusters, enabling multi-cluster application deployment and management.

Cluster Mesh

Interconnected network of container clusters, enabling cross-cluster communication and resource sharing.

Cluster Networking

Network configuration and management within and between container clusters, enabling inter-container communication.

Cluster Upgrade Process

Procedure for updating the Kubernetes version and components of a cluster while minimizing disruptions.

Cluster-level Logging

Centralized logging solution capturing logs from all containers and nodes in a cluster, aiding in troubleshooting.

ClusterAutoscaler

Kubernetes component that automatically adjusts the number of nodes in a cluster based on resource utilization.

ClusterIP

Kubernetes service type that exposes the service on an internal IP within the cluster, facilitating internal communication.

ClusterIP Services

Kubernetes services accessible only within the cluster, used for internal communication between pods.

ClusterRole

Kubernetes RBAC resource defining permissions across an entire cluster, not limited to a single namespace.

ClusterRoleBinding

Kubernetes RBAC resource that binds a ClusterRole to users, groups, or service accounts across all namespaces.

ClusterServiceVersion (CSV)

Custom resource in Operator Lifecycle Manager describing a specific version of an Operator.

Codefresh GitOps

GitOps platform for managing and automating containerized application deployments, streamlining CD workflows.

Cold Start Optimization

Techniques to reduce initialization time of containers, particularly important in serverless environments.

Compensating Transaction Pattern

Design pattern for handling failures in distributed container-based systems by reversing or compensating actions.

ConfigMap

Kubernetes API object used to store non-confidential data in key-value pairs, accessible by pods.

Consul Connect

Service mesh feature of Consul providing secure service-to-service communication with automatic TLS encryption.

Container

Standardized unit of software that packages code and all its dependencies for quick, reliable deployment.

Container Breakout Techniques

Methods used by attackers to escape container isolation and access the host system, posing security risks.

Container Engine

Software responsible for managing container lifecycle, including creation, execution, and destruction.

Container Escape

Security vulnerability allowing a process to break out of container isolation and access the host system.

Container Escape Prevention

Security measures and best practices to prevent containers from breaking out of their isolation.

Container Escape Vulnerabilities

Weaknesses in container runtimes or configurations that could allow processes to escape isolation.

Container Health Checks

Mechanisms to verify the health and readiness of containerized applications, ensuring service availability.

Container Host

Physical or virtual machine running the container runtime and hosting containers, providing the execution environment.

Container Image Promotion

Process of moving container images through different environments (e.g., dev, test, prod) in a controlled manner.

Container Image Signing

Cryptographic process of digitally signing container images to ensure their integrity and authenticity during distribution.

Container Lifecycle

Stages a container goes through from creation to termination, including running, paused, and stopped states.

Container Lifecycle Management

Processes and tools for managing containers throughout their lifecycle, from creation to deletion.

Container Logging

Process of capturing and managing log output from containerized applications for monitoring and troubleshooting.

Container Manifest

Configuration file specifying how to build a container image, including base image, commands, and environment setup.

Container Metrics

Quantitative measures of container performance, resource usage, and health, used for monitoring and optimization.

Container Network Interface (CNI)

Specification and libraries for configuring network interfaces in Linux containers, standardizing networking.

Container Network Interface (CNI) Spec

Standard for developing plugins to configure network interfaces in Linux containers, ensuring interoperability.

Container Networking Model

Architecture and principles governing how containers communicate within and across hosts in orchestrated environments.

Container Orchestration

Automated arrangement, coordination, and management of software containers, crucial in large-scale deployments.

Container Probes (Liveness, Readiness, Startup)

Kubernetes mechanisms (liveness, readiness, startup) for checking container health and controlling lifecycle.

Container Real User Monitoring (RUM)

Technique for capturing and analyzing real user interactions with containerized applications.

Container Restart Policies

Rules defining how containers should be restarted in case of failures or exits, enhancing application resilience.

Container Runtime

Software responsible for running containers, managing their lifecycle from creation to deletion.

Container Runtime Security

Measures and tools to protect containers during execution, preventing unauthorized access or malicious activities.

Container Shims

Lightweight processes that manage the lifecycle of containers and provide abstraction between runtimes.

Container Storage Interface (CSI)

Standardized interface for container orchestration platforms to interact with storage systems.

Container Storage Interface (CSI) Spec

Standard for developing storage plugins for container orchestration platforms, enabling storage extensibility.

Container Vulnerability Scanning

Process of identifying security vulnerabilities in container images and their dependencies.

Content Trust

Mechanism for verifying the integrity and authenticity of container images before deployment.

Continuous Deployment

Automated process of releasing container images to production environments after passing tests.

Continuous Verification

Ongoing process of validating deployed containers against defined policies and expectations.

Contiv-VPP for High-performance Networking

Container networking solution using VPP (Vector Packet Processing) for optimized performance.

Contract-First API Development

Approach prioritizing API definition before implementation, crucial for microservices architecture.

Control Groups (cgroups)

Linux kernel feature for limiting, prioritizing, and isolating resource usage of container groups.

Control Plane

Components managing the overall state of a container cluster, including API server, scheduler, and controllers.

Control Plane Upgrade

Process of updating the core components of a container orchestration system while maintaining cluster stability.

Controller Manager

Kubernetes component running controller processes to regulate the state of the cluster, maintaining desired state.

Controller Runtime

Software framework for building Kubernetes controllers and operators, simplifying custom resource management.

Conversion Webhooks

Kubernetes feature allowing custom resource API version conversions via external webhooks.

Copy-on-Write (CoW)

Storage optimization technique used in container filesystems to reduce duplication and improve efficiency.

Cordon

Process of marking a node as unschedulable in Kubernetes, preventing new pods from being assigned to it.

CoreDNS

Flexible, extensible DNS server used for service discovery in Kubernetes clusters, replacing kube-dns.

Cortex

Horizontally scalable, multi-tenant, long-term storage for Prometheus metrics, enhancing monitoring capabilities.

Cortex for Multi-tenant Prometheus

Use of Cortex to provide isolated Prometheus monitoring for multiple users or teams in shared environments.

CronJob

Kubernetes object for creating time-based jobs, running containers on a schedule for automated tasks.

CronJob Patterns

Kubernetes patterns for running batch processes and scheduled tasks in containerized environments.

Cross-namespace Operators

Kubernetes operators capable of managing resources across multiple namespaces, enabling broader automation.

Custom Metrics API

Kubernetes API extension allowing pods to consume custom metrics for autoscaling and monitoring.

Custom Resource

Extension of the Kubernetes API that defines new, custom resource types specific to a cluster's needs.

Custom Resource Conversion

Process of converting custom resources between different API versions in Kubernetes, enabling API evolution.

Custom Resource Definition (CRD)

Kubernetes API extension allowing the definition of custom resources, enabling cluster customization.

Custom Resource Definitions (CRDs)

Kubernetes feature for extending the API with custom resources, enabling cluster customization.

Custom Resources

User-defined API objects in Kubernetes, extending the core functionality of the platform for specific use cases.

Custom Scheduler

Alternative or additional scheduler implementation for Kubernetes, allowing custom pod placement logic.

Custom Schedulers

Alternative scheduling implementations in Kubernetes for custom pod placement strategies, enabling specialized scheduling logic.

DNS for Services and Pods

Kubernetes feature providing DNS-based service discovery for containers within the cluster.

DPDK in Container Networks

Use of Data Plane Development Kit for high-performance packet processing in container networks.

DaemonSet

Kubernetes object ensuring that all (or some) nodes run a copy of a specific pod, useful for cluster-wide services.