Bottlerocket Update Operator
Chkk coverage for Bottlerocket Update Operator. We provide version recommendations, preflight/postflight checks, and Upgrade Templates—ensuring worry-free operations.
Coverage Matrix
| Chkk Curated Release Notes | v0.2.1 to latest |
| Private Registry | Supported |
| Custom Built Images | Supported |
| Safety, Health, and Readiness Checks | v1.2.0 to latest |
| Supported Packages | Helm, Kustomize, Kube |
| EOL Information | Available |
| Version Incompatibility Information | Available |
| Upgrade Templates | In-Place, Blue-Green |
| Preverification | Available |
Bottlerocket Update Operator Overview
Bottlerocket Update Operator (Brupop) automates OS updates for Bottlerocket nodes in Kubernetes clusters. It comprises a controller, per-node agents, and an API server for secure coordination. Brupop orchestrates gradual node updates via Kubernetes-native draining and rebooting, reducing operational risk. Communication is secured using Kubernetes TokenReview and certificates managed by cert-manager. Platform teams gain automated, secure, and reliable OS patching without manual node intervention.
Chkk Coverage
Curated Release Notes
Chkk continuously tracks Brupop’s release notes, highlighting impactful features or breaking changes relevant to your clusters. Crucial modifications, such as node label changes or deprecated CRDs, are clearly flagged. This approach allows engineers to quickly grasp operational implications without unnecessary detail. Chkk ensures you’re prepared for updates affecting your cluster configuration or OS upgrade processes.
Preflight & Postflight Checks
Chkk’s preflight checks verify your cluster’s readiness, proper node labeling, and compatibility between OS versions. It flags issues like missing labels or risky large version jumps to avoid upgrade failures. Postflight checks validate Brupop’s controller and agents, ensuring successful node updates and reconnections. Logs and BottlerocketShadow resources are scanned for anomalies, enabling rapid identification and resolution of update issues.
Version Recommendations
Chkk monitors the support timelines for Bottlerocket OS and Brupop, alerting you when nearing end-of-life versions. Notifications explain potential risks, such as lacking security patches or compatibility with Kubernetes versions. Chkk advises stable, supported upgrade paths based on AWS’s recommendations and community insights. Custom version tracking aligns with your internal policies if you manage tailored Bottlerocket builds.
Upgrade Templates
Chkk provides structured Upgrade Templates for in-place updates with Brupop and blue-green node replacement strategies. Templates include clear instructions and rollback points, aligning with GitOps or CI/CD workflows. The templates incorporate best practices like sequential node updates, health verification, and incremental AMI rollouts. Platform teams confidently manage OS updates, significantly reducing error risk.
Preverification
Chkk’s Preverification simulates your upgrade process in an isolated environment, revealing issues like CRD conflicts or resource constraints. By rehearsing node draining and OS updates, it exposes potential blockers or configuration mismatches. Detected issues can be resolved proactively, ensuring a smoother production upgrade. Many teams integrate Preverification as a gating step within CI workflows, enhancing operational safety.
Supported Packages
Chkk supports multiple deployment methods for Brupop, including Helm charts, raw YAML manifests, and GitOps approaches. It identifies customizations like private registries or tuned pod resources, ensuring upgrade guidance maintains existing configurations. Differences between current and target configurations are clearly outlined to minimize operational impact. Platform engineers retain their preferred tools and workflows with seamless Chkk integration.