telepresenceio
diff --git a/‎blog/2024-12-10-telepresence-2.21.md
+3-9 b/‎blog/2024-12-10-telepresence-2.21.md
+3-9
diff --git a/‎blog/2025-03-14-telepresence-2.22.md
+109 b/‎blog/2025-03-14-telepresence-2.22.md
+109
diff --git a/‎blog/authors.yml
+7 b/‎blog/authors.yml
+7
diff --git a/‎versioned_docs/version-2.22/CONTRIBUTING.md
+23 b/‎versioned_docs/version-2.22/CONTRIBUTING.md
+23
diff --git a/‎versioned_docs/version-2.22/README.md
+45 b/‎versioned_docs/version-2.22/README.md
+45
diff --git a/‎versioned_docs/version-2.22/community.md
+13 b/‎versioned_docs/version-2.22/community.md
+13
diff --git a/‎versioned_docs/version-2.22/concepts/devloop.md
+55 b/‎versioned_docs/version-2.22/concepts/devloop.md
+55
@@ -2,17 +2,11 @@
 title: Telepresence 2.21
 description: What's new in Telepresence 2.21.
 slug: telepresence-2.21
-authors:
-  - name: Thomas Hallgren
-    title: Maintainer of Telepresence OSS
-    url: https://github.com/thallgren
-    image_url: https://github.com/thallgren.png
-    socials:
-      linkedin: https://www.linkedin.com/in/thallgren/
+authors: thallgren
 ---
 
-Telepresence 2.21.0 has been released, and here is a walkthrough of its many new features, such as  automatic VPN
-conflict avoidance, the new `telepresence ingest` command, and the improved docker  support provided by commands like
+Telepresence 2.21.0 has been released, and here is a walkthrough of its many new features, such as automatic VPN
+conflict avoidance, the new `telepresence ingest` command, and the improved docker support provided by commands like
 `telepresence curl` and `telepresence docker-run`.
 
 <!-- truncate -->
 
@@ -0,0 +1,109 @@
+---
+title: Telepresence 2.22
+description: What's new in Telepresence 2.22.
+slug: telepresence-2.22
+authors: thallgren
+---
+
+Telepresence 2.22 introduces several compelling features, notably the telepresence replace command, a JSON schema for Helm chart values, greater control over Traffic Manager's namespace scope, and improved customization of remote mount behavior.
+
+<!-- truncate -->
+
+## Telepresence Replace: Container-Level Substitution
+
+Telepresence introduces `telepresence replace`, a new command that offers a distinct method for interacting with containers, complementing `telepresence intercept` and `telepresence ingest`.
+
+### Distinguishing Features of `replace`
+
+While superficially similar to `intercept`, `replace` operates with fundamental differences:
+
+1.  **Container-Wide Scope:** `replace` substitutes an entire container, redirecting all its traffic, whereas `intercept` focuses on specific services or service/container ports.
+2.  **Direct Container Port Mapping:** The `--port` flag in `replace` directly maps to container ports.
+3.  **Optional Port Interception:** Unlike `intercept`, `replace` can function without intercepting any specific ports.
+4.  **Complete Container Replacement:** During a `replace`, the original container within the cluster is deactivated and fully substituted.
+
+### Rationale: Addressing Container-Level Substitution Needs
+
+The existing `telepresence intercept --replace` flag, which targets specific ports, prompted the development of the dedicated `replace` command.
+
+`intercept` inherently focuses on port-level traffic redirection. However, scenarios arise where container-level substitution is required without specific port interception. For instance, a message-queue consumer container might not expose any ports. Introducing a `--no-ports` flag to `intercept --replace` would create a logical contradiction, as "intercept" implies port-based traffic redirection.
+
+Therefore, `replace` was introduced to provide a clear and consistent mechanism for container-level substitution.
+
+### Deprecation of the `--replace` flag
+The `telepresence intercept --replace` flag is now deprecated. While it remains functional, a warning will be issued, recommending the use of `telepresence replace` instead.
+
+### Generic term for Ingest, Intercept, and Replace
+
+Client engagement of a container is defined as the act of ingesting, intercepting, or replacing that container. Consequently, the term 'engage' will appear frequently throughout the documentation.
+
+## Traffic Manager Namespaces
+
+The namespaces that the Telepresence Traffic Manager cares about can be declared in the Helm chart, and multiple  Traffic Managers can be installed that deal with their own set of namespaces as long as there's no overlap. This has been the case before this release. Two things are new though:
+
+1. **Namespaces are consistently declared:** Prior to this release, the namespace declaration was scattered into several Helm chart values, such as `manager.Rbac.namespaces`, `client.Rbac.namespaces`, and `agentInjector.webhook.namespaceSelector`. The definition is now unified to the mutual exclusive top-level Helm chart values `namespaces` and `namespaceSelector`.
+2. **The conflict detection is all-encompassing**: The old way of declaring namespaces implied that the Traffic Manager was either "cluster wide" (no declaration existed) or "namespaced". A conflict would be detected between two "namespaced" installation, but not between a "namespaced" and a "cluster wide" installation. This is no longer the case. All conflicting namespace selectors will yield errors and Helm will refuse to install them.
+
+### Dynamic or Static Selector
+
+A namespace selector can be dynamic or static. Telepresence will consider a selector that just targets the namespace name as a _static_ selector. Selectors using other labels, or negation of labels (using operator `NotIn`) are considered _dynamic_. The Difference is that the former isn't sensitive to changes (except, of course, the removal of a namespace) whereas the latter will take effect immediately if the set of matching namespaces changes.
+
+Sample _static_ selector, selecting the namespaces "alpha" and "beta":
+```yaml
+namespaceSelector:
+  matchExpressions:
+  - key: kubernetes.io/metadata.name
+    operator: In
+    values:
+    - alpha
+    - beta
+```
+
+This type of selector can also be declared using the short form `namespaces`:
+```yaml
+namespaces:
+- alpha
+- beta
+```
+
+Sample _dynamic_ selector, selecting namespaces where the label "example.com/managed" is "true" and "example.com/environment" is "dev" or "qa":
+
+```yaml
+namespaceSelector:
+  matchLabels:
+    example.com/managed: "true"
+  matchExpressions:
+  - key: example.com/environment
+    operator: In
+    values:
+    - dev
+    - qa
+```
+
+## Volume Mount Policies
+
+This feature gives the user control over what volumes that the traffic-agent will share with the client, how those volumes are shared (read-write or read-only), and also give the client a hint about volumes that are not shared but will be expected by the locally running container.
+
+Mount policies can be configured globally for a Traffic Manager using Helm chart values, or individually for a workload using template annotations.
+
+A volume policy can be `Ignore`, `Local`, `Remote`, or `RemoteReadOnly`. See the [Control Volume Sharing](/docs/reference/cluster-config#control-volume-sharing) section in the reference documentation for detailed information on the Helm chart value and annotation.
+
+## JSON-Schema for the Helm Chart Values
+
+It is no longer possible to enter invalid, misspelled, or otherwise non-existent configuration parameters when doing
+a `helm install|upgrade` or `telepresence helm install|upgrade`, because all values are now guarded using a JSON-schema.
+
+A new `telepresence helm lint` command was also added, which corresponds to [helm lint](https://helm.sh/docs/helm/helm_lint/), but uses the Helm chart embedded in the `telepresence` binary.
+
+## Other Notable Changes
+
+### Annotation Prefix Change
+All annotations now use the prefix `telepresence.io/`. This prefix was already used by labels added by Telepresence. The former annotation prefix `telepresence.getambassador.io/` will continue to work, but a warning will be printed in the logs.
+
+### Configmap `telepresence-agents` is no longer used
+The Traffic Agent configurations stored in the `telepresence-agents` configmap are now instead added as pod-annotations. The configmap is no longer used, and can be safely removed.
+
+### Rollbacks Triggered Using Pod Eviction
+When the configuration for a pod changes as the result of a client engaging with the pod, the pod will now be evicted in order to trigger the mutating webhook. This vouches for simpler logic and faster response times when engaging and ending an engagement. In earlier releases, Telepresence would instead patch the workload. The workload might still be triggered if the eviction fails due to the pod's disruption policy.
+
+Please check out the [Release Notes](/docs/release-notes) for a full list of all new features, changes, and bug-fixes.
@@ -0,0 +1,7 @@
+thallgren:
+  name: Thomas Hallgren
+  title: Maintainer of Telepresence OSS
+  url: https://github.com/thallgren
+  image_url: https://github.com/thallgren.png
+  socials:
+    linkedin: https://www.linkedin.com/in/thallgren/
@@ -0,0 +1,23 @@
+# Telepresence Documentation
+
+This folder contains the Telepresence documentation in a format suitable for a versioned folder in the
+telepresenceio/telepresence.io repository. The folder will show up in that repository when a new minor revision
+tag is created here.
+
+Assuming that a 2.20.0 release is pending, and that a release/v2.20.0 branch has been created, then:
+```console
+$ export TELEPRESENCE_VERSION=v2.20.0
+$ make prepare-release
+$ git push origin {,rpc/}v2.20.0 release/v2.20.0
+```
+
+will result in a `docs/v2.20` folder with this folder's contents in the telepresenceio/telepresence.io repository.
+
+Subsequent bugfix tags for the same minor tag, i.e.:
+```console
+$ export TELEPRESENCE_VERSION=v2.20.1
+$ make prepare-release
+$ git push origin {,rpc/}v2.20.1 release/v2.20.1
+```
+will not result in a new folder when it is pushed, but it will update the content of the `docs/v2.20` folder to
+reflect this folder's content for that tag.
@@ -0,0 +1,45 @@
+---
+description: Main menu when using plain markdown. Excluded when generating the website
+---
+# <img src="images/logo.png" height="64px"/> Telepresence Documentation
+raw markdown version, more bells and whistles at [telepresence.io](https://telepresence.io)
+
+- [Quick start](quick-start.md)
+- Install Telepresence
+  - [Install Client](install/client.md)
+  - [Upgrade Client](install/upgrade.md)
+  - [Install Traffic Manager](install/manager.md)
+  - [Cloud Provider Prerequisites](install/cloud.md)
+- Core concepts
+  - [The developer experience and the inner dev loop](concepts/devloop.md)
+  - [Making the remote local: Faster feedback, collaboration and debugging](concepts/faster.md)
+  - [Intercepts](concepts/intercepts.md)
+- How do I...
+  - [Code and debug an application locally](howtos/engage.md)
+  - [Use Telepresence with Docker](howtos/docker.md)
+  - [Work with large clusters](howtos/large-clusters.md)
+  - [Host a cluster in Docker or a VM](howtos/cluster-in-vm.md)
+- Technical reference
+  - [Architecture](reference/architecture.md)
+  - [Client reference](reference/client.md)
+  - [Laptop-side configuration](reference/config.md)
+  - [Cluster-side configuration](reference/cluster-config.md)
+  - [Using Docker for engagements](reference/docker-run.md)
+  - [Running Telepresence in a Docker container](reference/inside-container.md)
+  - [Environment variables](reference/environment.md)
+  - Engagements
+    - [Configure intercept using CLI](reference/engagements/cli.md)
+    - [Traffic Agent Sidecar](reference/engagements/sidecar.md)
+    - [Target a specific container](reference/engagements/container.md)
+  - [Volume mounts](reference/volume.md)
+  - [DNS resolution](reference/dns.md)
+  - [RBAC](reference/rbac.md)
+  - [Telepresence and VPNs](reference/vpn.md)
+  - [Networking through Virtual Network Interface](reference/tun-device.md)
+  - [Connection Routing](reference/routing.md)
+  - [Monitoring](reference/monitoring.md)
+- [FAQs](faqs.md)
+- [Troubleshooting](troubleshooting.md)
+- [Community](community.md)
+- [Release Notes](release-notes.md)
+- [Licenses](licenses.md)
@@ -0,0 +1,13 @@
+---
+title: Community
+hide_table_of_contents: true
+---
+
+# Community
+
+## Contributor's guide
+Please review our [contributor's guide](https://github.com/telepresenceio/telepresence/blob/release/v2/CONTRIBUTING.md)
+on GitHub to learn how you can help make Telepresence better.
+
+## Meetings
+Check out our community [meeting schedule](https://github.com/telepresenceio/telepresence/blob/release/v2/MEETING_SCHEDULE.md) for opportunities to interact with Telepresence developers.
@@ -0,0 +1,55 @@
+---
+title: The developer experience and the inner dev loop
+hide_table_of_contents: true
+---
+
+# The developer experience and the inner dev loop
+
+## How is the developer experience changing?
+
+The developer experience is the workflow a developer uses to develop, test, deploy, and release software.
+
+Typically this experience has consisted of both an inner dev loop and an outer dev loop. The inner dev loop is where the individual developer codes and tests, and once the developer pushes their code to version control, the outer dev loop is triggered.
+
+The outer dev loop is _everything else_ that happens leading up to release. This includes code merge, automated code review, test execution, deployment, controlled (canary) release, and observation of results. The modern outer dev loop might include, for example, an automated CI/CD pipeline as part of a GitOps workflow and a progressive delivery strategy relying on automated canaries, i.e. to make the outer loop as fast, efficient and automated as possible.
+
+Cloud-native technologies have fundamentally altered the developer experience in two ways: one, developers now have to take extra steps in the inner dev loop; two, developers need to be concerned with the outer dev loop as part of their workflow, even if most of their time is spent in the inner dev loop.
+
+Engineers now must design and build distributed service-based applications _and_ also assume responsibility for the full development life cycle. The new developer experience means that developers can no longer rely on monolithic application developer best practices, such as checking out the entire codebase and coding locally with a rapid “live-reload” inner development loop. Now developers have to manage external dependencies, build containers, and implement orchestration configuration (e.g. Kubernetes YAML). This may appear trivial at first glance, but this adds development time to the equation.
+
+## What is the inner dev loop?
+
+The inner dev loop is the single developer workflow. A single developer should be able to set up and use an inner dev loop to code and test changes quickly.
+
+Even within the Kubernetes space, developers will find much of the inner dev loop familiar. That is, code can still be written locally at a level that a developer controls and committed to version control.
+
+In a traditional inner dev loop, if a typical developer codes for 360 minutes (6 hours) a day, with a traditional local iterative development loop of 5 minutes — 3 coding, 1 building, i.e. compiling/deploying/reloading, 1 testing inspecting, and 10-20 seconds for committing code — they can expect to make ~70 iterations of their code per day. Any one of these iterations could be a release candidate. The only “developer tax” being paid here is for the commit process, which is negligible.
+
+![traditional inner dev loop](../images/trad-inner-dev-loop.png#devloop)
+
+## In search of lost time: How does containerization change the inner dev loop?
+
+The inner dev loop is where writing and testing code happens, and time is critical for maximum developer productivity and getting features in front of end users. The faster the feedback loop, the faster developers can refactor and test again.
+
+Changes to the inner dev loop process, i.e., containerization, threaten to slow this development workflow down. Coding stays the same in the new inner dev loop, but code has to be containerized. The _containerized_ inner dev loop requires a number of new steps:
+
+* packaging code in containers
+* writing a manifest to specify how Kubernetes should run the application (e.g., YAML-based configuration information, such as how much memory should be given to a container)
+* pushing the container to the registry
+* deploying containers in Kubernetes
+
+Each new step within the container inner dev loop adds to overall development time, and developers are repeating this process frequently. If the build time is incremented to 5 minutes — not atypical with a standard container build, registry upload, and deploy — then the number of possible development iterations per day drops to ~40. At the extreme that’s a 40% decrease in potential new features being released. This new container build step is a hidden tax, which is quite expensive.
+
+
+![container inner dev loop](../images/container-inner-dev-loop.png#devloop)
+
+## Tackling the slow inner dev loop
+
+A slow inner dev loop can negatively impact frontend and backend teams, delaying work on individual and team levels and slowing releases into production overall.
+
+For example:
+
+* Frontend developers have to wait for previews of backend changes on a shared dev/staging environment (for example, until CI/CD deploys a new version) and/or rely on mocks/stubs/virtual services when coding their application locally. These changes are only verifiable by going through the CI/CD process to build and deploy within a target environment.
+* Backend developers have to wait for CI/CD to build and deploy their app to a target environment to verify that their code works correctly with cluster or cloud-based dependencies as well as to share their work to get feedback.
+
+New technologies and tools can facilitate cloud-native, containerized development. And in the case of a sluggish inner dev loop, developers can accelerate productivity with tools that help speed the loop up again.