base on eBPF distributed networking observability tool for Kubernetes <h1 align="center"> <picture> <source media="(prefers-color-scheme: light)" srcset="site/static/img/Retina-logo-horizontal.png"> <img src="site/static/img/Retina-logo-horizontal.png" alt="Retina Logo" width="30%"> </picture> </h1> [](https://github.com/codespaces/new?hide_repo_select=true&ref=main&repo=746962176) [![goreport][goreport-img]][goreport] ![GitHub release][release-img] [![retina-publish][godoc-badge]][godoc] ![license] [![retina-test][retina-test-image-badge]][retina-test-image] [![retinash][retinash-badge]][retinash] [![retina-publish][retina-publish-badge]][retina-publish] ![retina-codeql-img][retina-codeql-badge] ![retina-golangci-lint-img][retina-golangci-lint-badge] ## Overview Retina is a cloud-agnostic, open-source **Kubernetes network observability platform** that provides a **centralized hub for monitoring application health, network health, and security**. It provides actionable insights to cluster network administrators, cluster security administrators, and DevOps engineers navigating DevOps, SecOps, and compliance use cases. Retina **collects customizable telemetry**, which can be exported to **multiple storage options** (such as Prometheus, Azure Monitor, and other vendors) and **visualized in a variety of ways** (like Grafana, Azure Log Analytics, and other vendors). ## Features - **[eBPF](https://ebpf.io/what-is-ebpf#what-is-ebpf)-based** Network Observability platform for Kubernetes workloads. - **On-Demand** and **Configurable**. - Actionable, industry-standard **Prometheus metrics**. - Streamlined **Packet Captures** for deep dives. - **Cloud-agnostic**, supporting multiple OS (like Linux, Windows, Azure Linux). ## Why Retina? Retina lets you **investigate network issues on-demand** and **continuously monitor your clusters**. For scenarios where Retina shines, see the intro docs [here](https://retina.sh/docs/Introduction/intro) ## Documentation See [retina.sh](http://retina.sh) for documentation and examples. ## Known Limitations ⚠️ **Performance on High-Core-Count Systems**: Community users have reported performance considerations when using Advanced metrics (with `packetparser` plugin) on nodes with 32+ CPU cores under high network load. Consider starting with Basic metrics mode on large node types. See [Known Limitations](https://retina.sh/docs/Introduction/intro#known-limitations) for details. ## Capabilities Retina has two major features: - [Metrics](https://retina.sh/docs/Metrics/metrics-intro) - [Captures](https://retina.sh/docs/Captures/overview) ### Metrics Quick Install Guide Retina can be installed using the Helm chart from GHCR: ```bash # Set the version to a specific version here or get latest version from GitHub API. VERSION=$( curl -sL https://api.github.com/repos/microsoft/retina/releases/latest | jq -r .name) helm upgrade --install retina oci://ghcr.io/microsoft/retina/charts/retina \ --version $VERSION \ --set image.tag=$VERSION \ --set operator.tag=$VERSION \ --set logLevel=info \ --set enabledPlugin_linux="\[dropreason\,packetforward\,linuxutil\,dns\]" ``` Set the `version` and image `tag` arguments to the desired version, if different. After Helm install, follow the steps for setting up [Prometheus](https://retina.sh/docs/Installation/prometheus) and [Grafana](https://retina.sh/docs/Installation/grafana) to configure metrics collection and visualization. ### Captures Quick Start Guide #### Captures via CLI The preferred way to install the Retina CLI using [Krew](https://krew.sigs.k8s.io/). ```bash kubectl krew install retina ``` Other installation options are documented in [CLI Installation](https://retina.sh/docs/Installation/CLI). Verify installation: ```bash $ kubectl retina Retina is an eBPF distributed networking observability tool for Kubernetes. Usage: kubectl-retina [command] Available Commands: capture Capture network traffic completion Generate the autocompletion script for the specified shell config Configure retina CLI help Help about any command shell [EXPERIMENTAL] Interactively debug a node or pod trace Retrieve status or results from Retina version Show version Flags: -h, --help help for kubectl-retina Use "kubectl-retina [command] --help" for more information about a command. ``` To quickly start creating a capture: ```bash kubectl retina capture create --pod-selectors <app=my-app> ``` For further CLI documentation, see [Capture with Retina CLI](https://retina.sh/docs/Captures/cli). #### Captures via CRD Install Retina using Helm: ```bash VERSION=$( curl -sL https://api.github.com/repos/microsoft/retina/releases/latest | jq -r .name) helm upgrade --install retina oci://ghcr.io/microsoft/retina/charts/retina \ --version $VERSION \ --set image.tag=$VERSION \ --set operator.tag=$VERSION \ --set image.pullPolicy=Always \ --set logLevel=info \ --set os.windows=true \ --set operator.enabled=true \ --set operator.enableRetinaEndpoint=true \ --skip-crds \ --set enabledPlugin_linux="\[dropreason\,packetforward\,linuxutil\,dns\,packetparser\]" ``` Then follow steps in [Capture CRD](https://retina.sh/docs/Captures/overview/#option-2-capture-crd-custom-resource-definition) for documentation of the CRD and examples for setting up Captures. ## Contributing This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit <https://cla.opensource.microsoft.com>. When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA. This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/). For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or contact [[email protected]](mailto:[email protected]) with any additional questions or comments. [Read more about how to begin contributing here.](https://retina.sh/docs/Contributing/overview) ### Verify signed images Retina images published to GHCR are cryptographically signed. You can verify their provenance with [`sigstore/cosign`](https://github.com/sigstore/cosign): ```shell REPO=microsoft/retina # or your repo IMAGE=retina-operator # or other image to verify # This can be replaced with another tag to verify, or with the image SHA256 LATEST_TAG=$(curl -s https://api.github.com/repos/microsoft/retina/releases | jq -r '.[0].name') cosign verify ghcr.io/$REPO/$IMAGE:$LATEST_TAG --certificate-oidc-issuer https://token.actions.githubusercontent.com --certificate-identity-regexp="https://github.com/$REPO" -o text ``` ### Office Hours and Community Meetings We host a periodic open community meeting. [Find the details here.](https://retina.sh/docs/Contributing/overview#office-hours-and-community-meetings) ## Trademarks This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow [Microsoft's Trademark & Brand Guidelines](https://www.microsoft.com/en-us/legal/intellectualproperty/trademarks/usage/general). Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies. ## License See the [LICENSE](LICENSE). ## Code of Conduct This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/). For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or contact [[email protected]](mailto:[email protected]) with any additional questions or comments. ## Contact For bugs or feature requests, open an [issue](https://github.com/microsoft/retina/issues). For security or vulnerability concerns, see [SECURITY.md](SECURITY.md). For other communication, contact the maintainers at <[email protected]>. [goreport-img]: https://goreportcard.com/badge/github.com/microsoft/retina [goreport]: https://goreportcard.com/report/github.com/microsoft/retina [godoc]: https://godoc.org/github.com/microsoft/retina [godoc-badge]: https://godoc.org/github.com/microsoft/retina?status.svg [release-img]: https://img.shields.io/github/v/release/microsoft/retina.svg [license]: https://img.shields.io/badge/license-MIT-blue?link=https%3A%2F%2Fgithub.com%2Fmicrosoft%2Fretina%2Fblob%2Fmain%2FLICENSE [retina-test-image-badge]: https://github.com/microsoft/retina/actions/workflows/test.yaml/badge.svg?branch=main [retina-test-image]: https://github.com/microsoft/retina/actions/workflows/test.yaml?query=branch%3Amain [retinash-badge]: https://github.com/microsoft/retina/actions/workflows/docs.yaml/badge.svg?branch=main [retinash]: https://retina.sh/ [retina-publish-badge]: https://github.com/microsoft/retina/actions/workflows/images.yaml/badge.svg?branch=main [retina-publish]: https://github.com/microsoft/retina/actions/workflows/images.yaml?query=branch%3Amain [retina-codeql-badge]: https://github.com/microsoft/retina/actions/workflows/codeql.yaml/badge.svg?branch=main [retina-golangci-lint-badge]: https://github.com/microsoft/retina/actions/workflows/golangci-lint.yaml/badge.svg?branch=main ", Assign "at most 3 tags" to the expected json: {"id":"8721","tags":[]} "only from the tags list I provide: [{"id":77,"name":"3d"},{"id":89,"name":"agent"},{"id":17,"name":"ai"},{"id":54,"name":"algorithm"},{"id":24,"name":"api"},{"id":44,"name":"authentication"},{"id":3,"name":"aws"},{"id":27,"name":"backend"},{"id":60,"name":"benchmark"},{"id":72,"name":"best-practices"},{"id":39,"name":"bitcoin"},{"id":37,"name":"blockchain"},{"id":1,"name":"blog"},{"id":45,"name":"bundler"},{"id":58,"name":"cache"},{"id":21,"name":"chat"},{"id":49,"name":"cicd"},{"id":4,"name":"cli"},{"id":64,"name":"cloud-native"},{"id":48,"name":"cms"},{"id":61,"name":"compiler"},{"id":68,"name":"containerization"},{"id":92,"name":"crm"},{"id":34,"name":"data"},{"id":47,"name":"database"},{"id":8,"name":"declarative-gui "},{"id":9,"name":"deploy-tool"},{"id":53,"name":"desktop-app"},{"id":6,"name":"dev-exp-lib"},{"id":59,"name":"dev-tool"},{"id":13,"name":"ecommerce"},{"id":26,"name":"editor"},{"id":66,"name":"emulator"},{"id":62,"name":"filesystem"},{"id":80,"name":"finance"},{"id":15,"name":"firmware"},{"id":73,"name":"for-fun"},{"id":2,"name":"framework"},{"id":11,"name":"frontend"},{"id":22,"name":"game"},{"id":81,"name":"game-engine "},{"id":23,"name":"graphql"},{"id":84,"name":"gui"},{"id":91,"name":"http"},{"id":5,"name":"http-client"},{"id":51,"name":"iac"},{"id":30,"name":"ide"},{"id":78,"name":"iot"},{"id":40,"name":"json"},{"id":83,"name":"julian"},{"id":38,"name":"k8s"},{"id":31,"name":"language"},{"id":10,"name":"learning-resource"},{"id":33,"name":"lib"},{"id":41,"name":"linter"},{"id":28,"name":"lms"},{"id":16,"name":"logging"},{"id":76,"name":"low-code"},{"id":90,"name":"message-queue"},{"id":42,"name":"mobile-app"},{"id":18,"name":"monitoring"},{"id":36,"name":"networking"},{"id":7,"name":"node-version"},{"id":55,"name":"nosql"},{"id":57,"name":"observability"},{"id":46,"name":"orm"},{"id":52,"name":"os"},{"id":14,"name":"parser"},{"id":74,"name":"react"},{"id":82,"name":"real-time"},{"id":56,"name":"robot"},{"id":65,"name":"runtime"},{"id":32,"name":"sdk"},{"id":71,"name":"search"},{"id":63,"name":"secrets"},{"id":25,"name":"security"},{"id":85,"name":"server"},{"id":86,"name":"serverless"},{"id":70,"name":"storage"},{"id":75,"name":"system-design"},{"id":79,"name":"terminal"},{"id":29,"name":"testing"},{"id":12,"name":"ui"},{"id":50,"name":"ux"},{"id":88,"name":"video"},{"id":20,"name":"web-app"},{"id":35,"name":"web-server"},{"id":43,"name":"webassembly"},{"id":69,"name":"workflow"},{"id":87,"name":"yaml"}]" returns me the "expected json"