A TPM-based combined remote attestation method for confidential computing
Problem statement Confidential computing technologies such as Intel TDX and AMD SNP rely on hardware-controlled Roots of Trust (RoT), inherently binding remote attestation to specific CPU vendors. While these solutions offer strong security guarantees, they also… ⌘ Read more

Karmada v1.15 Released! Enhanced Resource Awareness for Multi-Template Workloads
Karmada is an open multi-cloud and multi-cluster container orchestration engine designed to help users deploy and operate business applications in a multi-cloud environment. With its compatibility with the native Kubernetes API, Karmada can smoothly migrate single-cluster… ⌘ Read more

Auditing user activity in pods and nodes with the Security-Profiles-Operator
Kubernetes’ native audit logs are essential for tracking control plane activities, but they fail to capture what happens inside a container or on the host node itself during kubectl debugging sessions. This creates a security and… ⌘ Read more

Managing Kubernetes Workloads Using the App of Apps Pattern in ArgoCD-2
Managing a cloud native infrastructure at scale is no longer just about deploying single applications – it’s about organizing environments, defining clear boundaries and keeping everything version-controlled, consistent, automated and easily managed within a simple and… ⌘ Read more

Announcing ORAS v1.3.0: Elevating artifact and registry management workflows
The ORAS community is thrilled to announce the release of ORAS CLI v1.3.0, a version packed with stability improvements and pioneering capabilities. In addition to strengthening existing functionality, this release introduces three major new features designed… ⌘ Read more

KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: Open Source SecurityCon
Open Source SecurityCon has always been about bringing people together to strengthen trust in open source. From its beginnings within TAG Security to its growth as a standalone conference, and now returning to KubeCon + CloudNativeCon… ⌘ Read more

KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: Kubernetes on Edge Day
The inaugural Edge Day launched as a co-located event at KubeCon + CloudNativeCon EU in 2022, recognizing that data at the edge is here to stay. Once called the ‘Internet of Things’ and later ‘Industry 4.0,’… ⌘ Read more

Fluentd to Fluent Bit: A Migration Guide
Fluentd was created over 14 years ago and still continues to be one of the most widely deployed technologies for log collection in the enterprise. Fluentd’s distributed plugin architecture and highly permissive licensing made it ideal… ⌘ Read more

🏆 How I Passed the Certified Argo Project Associate (CAPA) Exam — And Why It Was Worth It
If you’ve been working with ArgoCD or exploring GitOps, you’ve probably come across the Certified Argo Project Associate (CAPA) exam. I recently passed it, and in this post, I want to share: This isn’t a sales pitch. It’s… ⌘ Read more

KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: BackstageCon
BackstageCon has been in existence since 2022, where it made its debut at KubeCon + CloudNativeCon North America in Detroit. We want attendees at BackstageCon to leave with a deeper understanding of the latest trends and… ⌘ Read more

Announcing H1 2026 KCDs
We’re excited to announce the first wave of Kubernetes Community Days (KCDs) for 2026! These community-organized events bring together local practitioners, adopters, and contributors to connect and share cloud native knowledge. What’s New in 2026 This… ⌘ Read more

KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: Kubeflow Summit
The inaugural Kubeflow Summit 2022 was held at the AMA Conference Center San Francisco, with KubeCon + CloudNativeCon Paris 2024 being our first co-located event. Who will get the most out of attending this event? Kubeflow… ⌘ Read more

Autonomous Testing of etcd’s Robustness
As a critical component of many production systems, including Kubernetes, the etcd project’s first priority is reliability. Ensuring consistency and data safety requires our project contributors to continuously improve testing methodologies. In this article, we describe… ⌘ Read more

CNCF’s Helm Project Remains Fully Open Source and Unaffected by Recent Vendor Deprecations
Recently, users may have seen the news about Broadcom (Bitnami) regarding upcoming deprecations of their publicly available container images and Helm Charts. These changes, which will take effect by September 29, 2025, mark a shift to… ⌘ Read more

Local Roots, Global Reach: CNCJ Reflects on KubeCon + CloudNativeCon Japan 2025
Konnichiwa from Tokyo! 🇯🇵 In June 2025, something remarkable happened: the global cloud native community gathered in Tokyo for the first-ever KubeCon + CloudNativeCon Japan, hosted by the Cloud Native Computing Foundation (CNCF) under the Linux… ⌘ Read more

Solving Kubernetes Multi-tenancy Challenges with vCluster
Understanding Multi-tenancy When we are building Internal Developer Platforms (IDP) for our customers Kubernetes is often a solid choice as the robust core of this platform. This is due to its technical capabilities and the strong… ⌘ Read more

My Journey to KubeCon + CloudNativeCon 2024: A Story of Volunteering and Growth
My name is Oscar Ayra and I am from Lima, Peru. In 2024, I had the privilege of being part of the volunteer team at Kubernetes Community Days (KCD) Lima. It was an enriching experience where… ⌘ Read more

Newbie No More: Lessons from My First KubeCon + CloudNativeCon as a Speaker
Introduction April in London has never felt so electric. From the first footstep in the ExCeL halls to the hallway conversations, KubeCon + CloudNativeCon Europe 2025 was a whirlwind of new ideas, familiar faces, and those… ⌘ Read more

CNCF Kubestronaut Program Momentum Highlights Asia’s Role in Growing Cloud Native Talent
Upcoming Kubestronaut celebrations in China and Japan to honor global program growth Hong Kong, China– 10 June, 2025 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, today announced continued… ⌘ Read more

iFLYTEK Wins CNCF End User Case Study Contest for Scalable AI Infrastructure Breakthroughs with Volcano
Company to present large-scale Kubernetes model training success at KubeCon + CloudNativeCon China 2025 Hong Kong, China — 10 June 2025 — The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software,… ⌘ Read more

GitOps in 2025: From Old-School Updates to the Modern Way
1. Introduction: Why Everyone’s Talking About GitOps in 2025 It’s 2025, and building software is more cloud-driven than ever. Cloud computing offers incredible speed and flexibility, but it also brings complexity. Companies are expected to ship… ⌘ Read more

A Farewell from Priyanka Sharma, Executive Director of CNCF
After five extraordinary years, I’m stepping down from my role as Executive Director of the Cloud Native Computing Foundation. A Journey of Growth and Impact Leading CNCF has been the honor of a lifetime. I joined… ⌘ Read more

Kubeflow Advances Cloud Native AI:  a glimpse into KubeCon + CloudNativeCon Europe 2025
The Kubeflow community is rapidly growing due to its contributions to advancing AI by streamlining the AI/ML experience in Kubernetes. Kubeflow provides a composable ecosystem for implementing end-to-end solutions for AI/ML. Kubeflow includes the following projects:… ⌘ Read more

Securing Kubernetes Traffic with Calico Ingress Gateway
Kubernetes, Envoy, GatewayAPI, cert-manager, CNI, Calico If you’ve managed traffic in Kubernetes, you’ve likely navigated the world of Ingress controllers. For years, Ingress has been the standard way of getting our HTTP/S services exposed. But let’s… ⌘ Read more

Thank You, Equinix Metal: The CNCF Community Bids Farewell to the Bare Metal Cluster
To our incredible open source community, Today, we’re announcing the sunset of the CNCF Community Cluster at the end of 2025. As Equinix Metal sunsets its offering, support for community initiatives like ours is also being… ⌘ Read more

Platform Democracy: Rethinking Who Builds and Consumes Your Internal Platform
Platform engineering has gone through multiple iterations over the years. First, there was the split between Development and Operations, a model that broke the flow of value by creating dependencies, bottlenecks, and misaligned incentives. Then came… ⌘ Read more

Streamlining application deployment on Kubernetes at RBC Capital Markets: A journey with FluxCD
As we learned from the first blog in our series, RBC has taken a holistic approach on our cloud journey, as it enables technologies across our enterprise. In today’s post, we’re going to share how Capital Markets… ⌘ Read more

CNCF Shares Schedule for Open Observability Summit North America, Gears Up for Inaugural Event
The event will unite observability leaders, developers, and end users to drive progress in observability tools and best practices SAN FRANCISCO, Calif., May 22, 2025 — The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems… ⌘ Read more

A milestone for lightweight Kubernetes: k0s joins CNCF sandbox
Member post originally published on the Mirantis blog by Prithvi Raj We are excited to announce that k0s, our lightweight, zero dependencies, and fully open-source Kubernetes distribution, has officially joined the Cloud Native Computing Foundation (CNCF) as a Sandbox project!… ⌘ Read more

Moving secure GitOps forward with Flux
Spirits were high as the Flux team came together in London for KubeCon + CloudNativeCon Europe this year. With plenty to celebrate and even more to accomplish, one theme stood out as omnipresent: project security. The… ⌘ Read more

Cloud Native Bangkok launched as the official chapter for Thailand
We’re happy to announce that, following the growing interest in and adoption of Cloud Native technologies in Thailand, an official chapter was just launched within the CNCF platform: Cloud Native Bangkok. Local enthusiasts from various companies… ⌘ Read more

Introducing k0rdent v0.3.0: Smarter observability, smoother operations
In my previous blog I wrote a detailed version describing how k0rdent eases platform engineering at scale. For those of you who are unaware, k0rdent is a Kubernetes-native distributed container management environment (DCME) designed to help… ⌘ Read more

Announcing Kyverno Release 1.14!
TL;DR We are excited to announce the release of Kyverno 1.14.0, marking a significant milestone in our journey to make policy management in Kubernetes more modular, streamlined, and powerful. This release introduces two new policy types… ⌘ Read more

How to install and run Minikube with Rootless Podman on ARM-based MacBooks
minikube provides a local Kubernetes cluster on macOS, Linux, and Windows. minikube’s primary goals are to be the best tool for local Kubernetes application development and to support all Kubernetes features that fit into that environment…. ⌘ Read more

Tea & Peaches: KubeCon + CloudNativeCon London Recap, Atlanta Sneak-Peek
KubeCon + CloudNativeCon Europe 2025 in London was nothing short of historic. As the biggest KubeCon to date — with 12,418 attendees, including 46% first-timers — it was a moment of celebration, reflection, and connection for… ⌘ Read more

Announcing Linkerd 2.18: Battlescars, lessons learned, and preliminary Windows support
We’re happy to announce the release of Linkerd 2.18. The theme of this release is battlescars: we’ve  added features and updated functionality to reduce operational pain in response to real life, hard-won lessons we’ve learned with… ⌘ Read more

The Kubernetes Surgeon’s Handbook: Precision Recovery from etcd Snapshots
TL;DR: Precision Recovery from etcd in 5 Steps This guide walks you through surgical resource recovery from etcd snapshots without triggering a full cluster restore. Whether you’re troubleshooting accidental deletions or forensic debugging, this lightweight and… ⌘ Read more

CNCF Announces Speakers and Sessions for KubeCon + CloudNativeCon India
Second annual India event to spotlight developer innovation and cloud native leadership Hyderabad, India, 7 May, 2025– The Cloud Native Computing Foundation (CNCF), which builds sustainable ecosystems for cloud-native software, today announced the keynote speakers and… ⌘ Read more

10 Years in Cloud Native: TOC Restructures Technical Groups
The CNCF Technical Oversight Committee (TOC) is the technical governing body responsible for maintaining the technical vision of the CNCF. At the time the CNCF was founded in 2015 and as of 2016, there were four… ⌘ Read more

Technology Where I Belong
When I first started working with technology, it felt like a promise. A promise that we could change the world for the better. As a young developer building Java applications, I was fascinated by how code… ⌘ Read more

Announcing OpenReports: Standardized Kubernetes Reporting
The Kubernetes ecosystem, while powerful, is a sprawling landscape of tools. As organizations scale their deployments, ensuring compliance and security becomes paramount. But how do you effectively track and report on your Kubernetes policies and scanners… ⌘ Read more

Announcing the Automated Governance Maturity Model
We are entering an era where Governance is increasingly important; with AI systems generating code and becoming a critical part of application’s runtime infrastructure, we can produce outputs at an increasingly rapid pace. Organizations and individuals… ⌘ Read more

Building Trust with OpenID Federation Trust Chain on Keycloak
OpenID Federation 1.0 provides a framework to build trust between a Relying Party and an OpenID Provider that have no direct relationship so that the Relying Party can  send OIDC/OAuth requests to the OpenID Provider without being previously… ⌘ Read more

Understanding Kubernetes Gateway API: A Modern Approach to Traffic Management
Traffic management in Kubernetes can be complex, especially with modern applications composed of multiple services like frontends, APIs, and backends spread across hybrid and multi-cloud environments. As these environments grow, ensuring secure, efficient, and reliable communication… ⌘ Read more

CNCF and Synadia align on securing the future of the NATS.io project
CNCF and Synadia have come to an agreement to ensure that NATS continues to thrive as a healthy open source project within CNCF, with Synadia’s continued support and involvement. Please see our joint announcement for more… ⌘ Read more

Protecting NATS and the integrity of open source: CNCF’s commitment to the community
Updated May 1, 2025: CNCF and Synadia have come to an agreement to ensure that NATS continues to thrive as a healthy open source project within CNCF, with Synadia’s continued support and involvement. Please see our… ⌘ Read more

CNCF and Synadia Align on Securing the Future of the NATS.io Project
SAN FRANCISCO and San Mateo, CA – May 1, 2025 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, and leading edge innovator Synadia today announced that the widely-adopted NATS… ⌘ Read more

Enforcing Artifact Security with Trivy and OPA
In cloud-native development, ensuring the integrity and security of software artifacts (such as Docker images, Python wheels, and Helm charts) is a fundamental challenge. With the growing adoption of continuous integration and delivery pipelines, there’s a… ⌘ Read more

Kubestronaut in Orbit: Jana Vonšák
Get to know Jana We’re thrilled to recognize Jana Vonšák from Slovakia as our first-ever female Golden Kubestronaut. A dedicated DevOps Security Engineer with a background in software development, Jana brings a rare blend of development… ⌘ Read more

Announcing Vitess 22
The Vitess maintainers are happy to announce the release of version 22.0.0, along with version 2.15.0 of the Vitess Kubernetes Operator. This release is the first to benefit from a 6-month-long development cycle, after our recent… ⌘ Read more