These Kubernetes mistakes will make you an easy target for hackers
Kubernetes is exceedingly powerful for orchestrating containerized applications at scale. But without proper monitoring and observability—especially in self-managed infrastructure—it can quickly become a security disaster waiting to happen. This is not due to inherent flaws in… ⌘ Read more

Deep Dive into the Gateway API Inference Extension
Running AI inference workloads on Kubernetes has some unique characteristics and challenges, and the Gateway API Inference Extension project aims to solve some of those challenges. I recently wrote about these new capabilities in the kgateway… ⌘ Read more

Creating a ClickHouse Cluster on Raspberry Pis
Want a hands-on way to explore Kubernetes and ClickHouse®—without spinning up cloud VMs? In this post, we’ll build a home-lab cluster of Raspberry Pi 5 boards that mimics a high-availability setup. Whether you’re a cloud-native developer… ⌘ Read more

We invent docker, we invent kubernetes, we invent portainer, why we still not invent solution to migrate data volumes between hosts? :(

What LLMs Can Do for SREs in Cloud Native Infrastructure
Cloud native infrastructure continues to scale, and with it, so does operational overhead. Kubernetes has become the backbone of modern platforms, but as cluster sizes grow past 100 nodes and thousands of workloads, the operational load… ⌘ Read more

Five Critical Shifts for Cloud Native at a Crossroads
As enterprises run ever-more-complex workloads on Kubernetes, they’re facing a new set of challenges: how to ensure security requirements are met, budgets are deployed efficiently and operational complexity is, well, not as complex. Many are finding… ⌘ Read more

10 Questions to Help You Decide Whether to Hire an SRE or Managed KaaS
Deciding between managing Kubernetes in-house or partnering with a managed service provider can be a difficult choice for organizations seeking to optimize their cloud infrastructure. Over the past several years, I’ve been part of the decision… ⌘ Read more

Kubernetes hardening made easy: Running CIS Benchmarks with kube-bench
In today’s world, where security risks and breaches are growing daily, it is crucial to maintain our applications and infrastructure’s compliance with security standards and that is where CIS benchmarks from CIS (Center for Internet Security)… ⌘ Read more

AWS Support Fuels Kubernetes Innovation, Driving Global Adoption and Open Source Sustainability
AWS extends $3 million cloud credit grant to Kubernetes project, ensuring continued growth and resilience KubeCon + CloudNativeCon Europe, London, UK – April 1, 2025 — The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems… ⌘ Read more

Cloud Native Computing Foundation Announces Argo CD v3 Update to Enhance Scalability and Security for Kubernetes
Latest release boosts automation, performance, and security for Kubernetes-native GitOps KubeCon + CloudNativeCon Europe, London, UK – April 1, 2025 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, today… ⌘ Read more

Cedar: A New Approach to Policy Management for Kubernetes
The challenges organizations face when managing access control and authorization in cloud-native environments continue to grow in complexity. Organizations scaling their Kubernetes deployments, for example, work to balance their security requirements, operational flexibility, and policy manageability…. ⌘ Read more

Istio: The Highest-Performance Solution for Network Security
Ambient mode provides more encrypted throughput than any other project in the Kubernetes ecosystem. Encryption in transit is a baseline requirement for almost all Kubernetes environments today, and forms the foundation of a zero-trust security posture…. ⌘ Read more

Building Secure Kubernetes Edge Images with Kairos and k0s
Why combining these CNCF projects simplifies Kubernetes deployment at the edge. Edge computing is rapidly changing the landscape of application deployment, demanding solutions that are lightweight, secure, and easily managed, particularly when it comes to Kubernetes… ⌘ Read more

Building Scalable, Agile, and Secure APIs with Kubernetes and Microservices
The dawn of APIs across the digital ecosystem has fundamentally disrupted standard business models and software development. And enhancing these approaches with intelligent, data-driven, and real-time insights allows your organization to dynamically scale. However traditional monolithic… ⌘ Read more

Kubernetes Troubleshooting: A Step-by-Step Guide
In the modern era of the software industry, microservice architecture and Kubernetes have become the globally adopted solution, for organizations looking for scalability and operational efficiency. At one end where these cutting-edge technologies help organizations operate… ⌘ Read more

Expose the Kubernetes API and access it anywhere
Accessing the Kubernetes API for your clusters from anywhere or across any network is a powerful lever. It’s even better if you can do so without shipping or extending more messy networks, like VPCs or VPNs…. ⌘ Read more

Automating NIS2 Compliance in Kubernetes with Kyverno: A Practical Guide
2025 is the year when NIS2 measures will start to bite. Is your platform team ready for the challenge? This post gives a brief overview of NIS2 in the context of platform engineering. Then it gives… ⌘ Read more

Too Complex: It’s Not Kubernetes, It’s What It Does
The open-source container orchestration system for automating software deployment, scaling, and management has earned a bad rep for being too complicated. In this post, let’s explore whether that reputation is well deserved. The Steep Learning Curve… ⌘ Read more

Kubestronaut in Orbit: Gerardo López
Get to know Gerardo Gerardo is a passionate Cloud Native Advocate, Kubernetes expert, and Docker Captain with a strong focus on DevOps, software development, and security. Based in Costa Rica, he has earned several certifications, including… ⌘ Read more

Desktop 4.39: Smarter AI Agent, Docker CLI in GA, and Effortless Multi-Platform Builds
Docker Desktop 4.39 brings Docker AI Agent for real-time help, plus Bake for faster builds and Multi-Node Kubernetes for better testing. Learn more! ⌘ Read more

KubeCon + CloudNativeCon Europe 2025 co-located event deep dive: Cloud Native + Kubernetes AI Day
Co-chairs: Rajas Kakodkar, Ricardo Rocha, Thiago Gil, Yuan TangApril 1, 2025London Cloud Native & Kubernetes AI Day brings together a diverse range of technical enthusiasts, open source contributors, practitioners, researchers and end users, all united in… ⌘ Read more

Data Protection Working Group Deep Dive Session at KubeCon + CloudNativeCon London
Data on Kubernetes is a growing field, with databases, object stores, and other stateful applications moving to the platform. The Data Protection Working Group focuses on data availability and preservation for Kubernetes – including backup, restore,… ⌘ Read more

Kubescape becomes a CNCF incubating project
The CNCF Technical Oversight Committee (TOC) has voted to accept Kubescape as a CNCF incubating project.  Kubescape is an open-source Kubernetes security project designed to offer comprehensive security coverage throughout the entire development and deployment lifecycle…. ⌘ Read more

Announcing the Kubernetes “Shift Down” Security Paper
The CNCF Kubernetes Policy Working group (WG) has just released the Shift Down Security paper to help educate the community about how organizations can leverage cloud native security best practices to address key business risks and… ⌘ Read more

Introducing k0rdent: Design, Deploy, and Manage Kubernetes-based IDPs
The Challenge Today Kubernetes is the de facto standard for container orchestration, but managing a complete infrastructure efficiently remains a significant challenge. Without a standardized approach, most organizations building an Internal Developer Portal (IDP) face inconsistent… ⌘ Read more

OSTIF Announces Linkerd Security Audit Results
The Open Source Technology Improvement Fund (OSTIF) is proud to share the results of our security audit of Linkerd. Linkerd is an open source service mesh for Kubernetes which prioritizes reliability, security, and simplicity. Thanks to… ⌘ Read more

Demo an Automated Canary Deployment on Kubernetes with Argo Rollouts, Istio, and Prometheus
Building stuff is fun! Let’s use Argo Rollouts, Istio, and Prometheus to automate a canary deployment on Kubernetes! The application we’ll run is the Argo Rollouts Demo Application which does a great job of visualizing how… ⌘ Read more

How to manage three top Kubernetes security vulnerabilities
This article explains: Kubernetes and security Across various organizations, Kubernetes is being adopted at lightning rates. It is estimated that 60% of organizations have adopted this technology, and the list of companies planning on transitioning to… ⌘ Read more

Docker Desktop 4.38: New AI Agent, Multi-Node Kubernetes, and Bake in GA
Docker Desktop 4.38 brings Docker AI Agent for real-time help, plus Bake for faster builds and Multi-Node Kubernetes for better testing. Learn more! ⌘ Read more

Finally I’ll also be setting up CubeFS (finally mature enough to give it a serious go) and slowly migrating workloads to use it as Persistent …
Finally I’ll also be setting up CubeFS ( finally mature enough to give it a serious go) and slowly migrating workloads to use it as Persistent storage across the 3 Hypervisor nodes ( which will run KVM + CubeFS) – Thank goodness this thing ( CubeFS) doesn’t need to run on Kubernetes 😂 ⌘ Read more

Digital transformation driven by community: Kubernetes as example
Member post by Angel Ramirez, Cuemby In a rapidly evolving technological landscape, Kubernetes emerges as a transformative force in open-source innovation. Originating from a Google project in 2014, it has grown into a global movement that… ⌘ Read more

What is observability 2.0?
Member post originally published on the Middleware blog by Sam Suthar In the race to adopt cutting-edge technologies like Kubernetes, microservices, and serverless computing, monitoring often becomes an afterthought. Many enterprises assume their legacy observability tools will suffice. However, as they… ⌘ Read more

Kubernetes in 2025: are you ready for these top 5 trends and predictions?
Member post originally published on the Fairwinds blog by Andy Suderman Now that Kubernetes has turned 10, it has firmly established itself as a cornerstone of cloud-native deployment. That means it’s finally fair to request ten years… ⌘ Read more

What is GitLab Runner?
Ambassador post by Natalia Granato, CNCF Ambassador GitLab Runner is an open-source application that runs jobs defined in your GitLab CI/CD pipelines. It can be installed on different platforms, including virtual machines, bare-metal servers, and Kubernetes…. ⌘ Read more

Announcing the results of the Karmada security audit
Community post cross-posted on the OSTIF blog OSTIF is proud to share the results of our security audit of Karmada. Karmada is an open source Kubernetes orchestration system for running cloud-native applications seamlessly across different clouds… ⌘ Read more

The KCD Sofia 2025 logo: movement. direction. evolution.
KCD post by the Kubernetes Community Days Sofia organizers Today, we’re having a conversation with Veneta Gergova, the artist behind the design and logo for KCD Sofia 2025. What is your experience as a designer and… ⌘ Read more

CEL-ebrating simplicity: mastering Kubernetes policy enforcement with CEL
Community post by Kevin Conner, Chief Engineer, Getup Cloud and co-author of Kubernetes in Action 2nd Edition As Kubernetes deployments grow in scale and complexity, policy enforcement becomes a critical aspect of maintaining secure and reliable… ⌘ Read more

How to Set Up a Kubernetes Cluster on Docker Desktop
We walk through the steps to start a Kubernetes cluster on Docker Desktop and provide troubleshooting tips to ensure a smooth experience. ⌘ Read more

Cilium releases 2024 annual report
Following a year of significant milestones in 2023, 2024 for Cilium was pivotal in that organizations are now leveraging the project to manage their entire Kubernetes networking stack. We are pleased to share the 2024 Cilium… ⌘ Read more

Running a production-ready Raspbery Pi Kubernetes cluster at home
Ambassador post originally published on Gerald on IT by Gerald Venzl In this guide, I’ll cover how to run a production-ready Raspberry Pi Kubernetes Cluster using K3s. Background If you are like me, you probably have… ⌘ Read more

Managing large-scale Redis clusters on Kubernetes with an operator – Kuaishou’s approach
Member post originally published on KubeBlocks by Yuxing Liu As a popular short-form video application, Kuaishou relies heavily on Redis to deliver low-latency responses to its users. Operating on private cloud infrastructure, automating the management of… ⌘ Read more

Reconsidering Kubernetes deployments: when operators are overkill
Member post originally published on the Devtron blog by Prakarsh TL:DR: Kubernetes Operators are powerful but can be overkill for simple deployments. Explore alternatives like Helm, ArgoCD, and Devtron to streamline your Kubernetes deployments without sacrificing… ⌘ Read more

k9s – manage your Kubernetes cluster and it’s objects like a pro!
Community post originally published on Dev.to by Sunny Bhambhani Introductionk9s is a terminal based GUI to manage any Kubernetes(k8s) cluster. Using this single utility, we can manage, traverse, watch all our Kubernetes objects. More information around… ⌘ Read more

Understanding k0s: a lightweight Kubernetes distribution for the community
Ambassador post by Prithvi Raj, CNCF Ambassador and Community Manager at Mirantis As Kubernetes continues to grow as the de-facto orchestration platform for containerized applications and is massively adopted by large, medium as well as small… ⌘ Read more

Kubestronaut in Orbit: Eyal Zekaria
Get to know Eyal This week’s Kubestronaut in Orbit, Eyal Zekaria is a Senior Cloud Architect in Berlin, Germany. Eyal has a DevOps and SRE background and has experience operating Kubernetes clusters at scale at different… ⌘ Read more

Kubernetes at the edge using LINBIT SDS for persistent storage
Member post originally published on Linbit’s blog by Matt Kereczman Edge computing is a distributed computing paradigm that brings data processing and computation closer to the data source or “edge” of the network. This reduces latency… ⌘ Read more

Kubernetes for databases: weighing the pros and cons
Member post originally published on The New Stack by Kate Obiidykhata, Percona Over the past few decades, database management has shifted from traditional relational databases on monolithic hardware to cloud native, distributed environments. With the rise of microservices… ⌘ Read more

How Fastly used Kubernetes to scale our platform engineering practice
Member post originally published on Fastly’s blog by Hannah Aubry About five years ago, Fastly had a problem with scale. No, not our network. Fastly’s network continues to scale effortlessly, including recently breezing past a 353… ⌘ Read more

Cloud Neutral Postgres Databases with Kubernetes and CloudNativePG
Member post by Gabriele Bartolini, VP Chief Architect of Kubernetes at EDB Abstract This article delves into the concept of cloud neutrality— a term I prefer over agnosticism— in PostgreSQL deployments. It highlights the transformative impact… ⌘ Read more

Kubestronaut in Orbit: Dmitri Telinov
Get to know Dmitri This week’s Kubestronaut in Orbit, Dmitri Telinov, a Senior DevOps Engineer in Chișinău, Moldova, is a curious and avid learner and considered himself a complete beginner in Kubernetes only 3 years ago…. ⌘ Read more