Aurélie Vache

Developer Advocate at OVHcloud, specialized in Cloud Native, Infrastructure as Code (IaC) & Developer eXperience (DX).
She is recognized as a Docker Captain, CNCF ambassador, GDE & Women techmakers Ambassador.
She has been working as a Developer and Ops for over 20 years. Cloud enthusiast and advocates DevOps/Cloud/Golang best practices.
Technical writer, a sketchnoter and a speaker at international conferences.

Book author, she created a new visual way for people to learn and understand Cloud technologies: "Understanding Kubernetes / Docker / Istio in a visual way" in sketchnotes, books and videos.

Copy.Fail (CVE-2026-31431): How to Rapidly Protect OVHcloud MKS Clusters from the Linux Kernel Zero-Day

/ / , / OVHcloud Engineering, Tranches de Tech & co

A newly disclosed Linux kernel zero-day, CVE-2026-31431, “Copy.Fail”, is one of the most serious privilege-escalation vulnerabilities in recent years. Discovered by Theori and publicly disclosed on April 29, 2026, Copy.Fail is a Linux kernel zero-day that roots every distribution since 2017. Unlike many local privilege-escalation flaws that depend on race conditions, kernel address leaks, or […]

Copy.Fail (CVE-2026-31431): How to Rapidly Protect OVHcloud MKS Clusters from the Linux Kernel Zero-Day Read More »

KubeCon + CloudNativeCon Europe 2026 in Amsterdam: feedback and highlights

/ / , , / OVHcloud Engineering, Tranches de Tech & co

From March 23 to 26, 2026, the KubeCon + CloudNativeCon Europe took place in Amsterdam. Aurélie Vache and Rémy Vandepoel attended alongside 26 other OVHcloud employees. In this blog, they share their thoughts about this second KubeCon set in the land of tulips. KubeCon Europe 2026: the maturity milestone Back from Amsterdam, the buzz of

KubeCon + CloudNativeCon Europe 2026 in Amsterdam: feedback and highlights Read More »

Discover the External Secret Operator (ESO) OVHcloud Provider to manage your Kubernetes secrets 🎉

/ / OVHcloud Engineering, Tranches de Tech & co

Several months ago, we released the Beta version of the OVHcloud Secret Manager and we guided you how to manage your secrets thanks to the existing External Secret Operator (ESO) Hashicorp Vault provider. As our Secret Manager is now in General Availability, our teams worked on the development of an OVHcloud ESO Provider now available

Discover the External Secret Operator (ESO) OVHcloud Provider to manage your Kubernetes secrets 🎉 Read More »

Secure your Software Supply Chain with OVHcloud Managed Private Registry (MPR)

/ / , , / OVHcloud Engineering, Tranches de Tech & co

Before an application go to production, it passes through several stages: source code, build, packaging and distribution. But Malicious code – such as a compromised dependency, breached CI pipeline, or modified package in a registry – can be introduced at any point in the development cycle, potentially impacting thousands of projects This is precisely where

Secure your Software Supply Chain with OVHcloud Managed Private Registry (MPR) Read More »

Moving Beyond Ingress: Why should OVHcloud Managed Kubernetes Service (MKS) users start looking at the Gateway API?

/ / , , / OVHcloud Engineering, Tranches de Tech & co

For years, the Kubernetes Ingress API, and the popular Ingress NGINX controller (ingress-nginx), have been the default way to expose applications running inside a Kubernetes cluster. But the ecosystem is changing: the Kubernetes SIG network has announced the retirement of Ingress NGINX in March 2026. After March 2026 the Ingress NGINX will no longer get

Moving Beyond Ingress: Why should OVHcloud Managed Kubernetes Service (MKS) users start looking at the Gateway API? Read More »

Manage your secrets using OVHcloud Secret Manager with External Secrets Operator (ESO) on OVHcloud Managed Kubernetes Service (MKS)

/ / , , , , / OVHcloud Engineering, Tranches de Tech & co

Secrets resources in Kubernetes help us keep sensitive information like logins, passwords, tokens, credentials and certificates secure. But just a heads up: Secrets in Kubernetes are base64 encoded, not encrypted so anyone can read and decode them if they know how. The good news is that OVHcloud has just launched the Secret Manager Beta, which

Manage your secrets using OVHcloud Secret Manager with External Secrets Operator (ESO) on OVHcloud Managed Kubernetes Service (MKS) Read More »

Create encrypted Persistent Volumes on OVHcloud Managed Kubernetes clusters with LUKS

/ / , , , / OVHcloud Engineering, Tranches de Tech & co

Since this summer, it’s possible to create encrypted OVHcloud Block Storage with OMK (OVHcloud managed key) in RBX, SBG, Paris & BHS regions. More regions will come in the coming months 💪. And the good news is that you can use encrypted Block Storage using Persistent Volumes in your OVHcloud Managed Kubernetes Service (MKS) clusters

Create encrypted Persistent Volumes on OVHcloud Managed Kubernetes clusters with LUKS Read More »

Using OVHcloud S3-compatible Object Storage as Terraform Backend to store your Terraform/OpenTofu states

/ / , , / OVHcloud Engineering, Tranches de Tech & co

When working on Infrastructure as Code projects, with Terraform or OpenTofu, Terraform States files are created and modified locally in a terraform.tfstate file. It’s a common usage and practice but not convenient when working as a team. Do you know that you can configure Terraform to store data remotely on OVHcloud S3-compatible Object Storage? OVHcloud

Using OVHcloud S3-compatible Object Storage as Terraform Backend to store your Terraform/OpenTofu states Read More »

Discover Kubernetes 1.33 features – Topology aware routing in multi-zones Kubernetes clusters

/ / , , , , , , / OVHcloud Engineering, Tranches de Tech & co

Kubernetes 1.33 version has just been released few days/weeks ago.As this new release contains 64 enhancements (!), it can not be easy to know what are the interesting and useful features and how to use them. In this blog post, let’s discover one of interesting and useful new feature: “Topology aware routing in multi-zones Kubernetes

Discover Kubernetes 1.33 features – Topology aware routing in multi-zones Kubernetes clusters Read More »

Deploy your workloads on 3 availability zones with our new Managed Kubernetes Services (MKS) ‘Premium’ plan

/ / , , , , / OVHcloud Engineering, Tranches de Tech & co

This blog post will first explain briefly what is the new MKS Premium plan, for who and which use case, then you will see how to deploy a new MKS cluster in 3 availability zones and how to deploy your workloads with this new architecture of Kubernetes cluster. What’s inside the Premium MKS? The 30th

Deploy your workloads on 3 availability zones with our new Managed Kubernetes Services (MKS) ‘Premium’ plan Read More »