https://clusternotes.io/blog Notes from a cloud-native engineering journey — Kubernetes, observability, GitOps, Azure, AWS. Practical lessons, hands-on experiments, and how the pieces actually fit together. en-us kozlowski.softnet@gmail.com (Krzysztof Kozłowski) kozlowski.softnet@gmail.com (Krzysztof Kozłowski) Mon, 08 Jun 2026 00:00:00 GMT https://clusternotes.io/blog/gitops-push-vs-pull https://clusternotes.io/blog/gitops-push-vs-pull Push and pull both deploy to Kubernetes, but they flip the direction of trust. Pull moves cluster credentials out of CI, makes drift visible, and turns Git into the cluster audit log. Here is the difference, what actually changes, and what pull does not solve. Mon, 08 Jun 2026 00:00:00 GMT kozlowski.softnet@gmail.com (Krzysztof Kozłowski) gitopskubernetessecurity