Posts in 2023
-
Consider All Microservices Vulnerable — And Monitor Their Behavior
Friday, January 20, 2023 in Blog
Author: David Hadas (IBM Research Labs) This post warns Devops from a false sense of security. Following security best practices when developing and configuring microservices do not result in non-vulnerable microservices. The post shows that although …
-
Protect Your Mission-Critical Pods From Eviction With PriorityClass
Thursday, January 12, 2023 in Blog
Author: Sunny Bhambhani (InfraCloud Technologies) Kubernetes has been widely adopted, and many organizations use it as their de-facto orchestration engine for running workloads that need to be created and deleted frequently. Therefore, proper …
-
Kubernetes 1.26: Eviction policy for unhealthy pods guarded by PodDisruptionBudgets
Friday, January 06, 2023 in Blog
Authors: Filip Křepinský (Red Hat), Morten Torkildsen (Google), Ravi Gudimetla (Apple) Ensuring the disruptions to your applications do not affect its availability isn't a simple task. Last month's release of Kubernetes v1.26 lets you specify an …
-
Kubernetes v1.26: Retroactive Default StorageClass
Thursday, January 05, 2023 in Blog
Author: Roman Bednář (Red Hat) The v1.25 release of Kubernetes introduced an alpha feature to change how a default StorageClass was assigned to a PersistentVolumeClaim (PVC). With the feature enabled, you no longer need to create a default …
-
Kubernetes v1.26: Alpha support for cross-namespace storage data sources
Monday, January 02, 2023 in Blog
Author: Takafumi Takahashi (Hitachi Vantara) Kubernetes v1.26, released last month, introduced an alpha feature that lets you specify a data source for a PersistentVolumeClaim, even where the source data belong to a different namespace. With the new …
Posts in 2022
-
Kubernetes v1.26: Advancements in Kubernetes Traffic Engineering
Friday, December 30, 2022 in Blog
Authors: Andrew Sy Kim (Google) Kubernetes v1.26 includes significant advancements in network traffic engineering with the graduation of two features (Service internal traffic policy support, and EndpointSlice terminating conditions) to GA, and a …
-
Kubernetes 1.26: Job Tracking, to Support Massively Parallel Batch Workloads, Is Generally Available
Thursday, December 29, 2022 in Blog
Authors: Aldo Culquicondor (Google) The Kubernetes 1.26 release includes a stable implementation of the Job controller that can reliably track a large amount of Jobs with high levels of parallelism. SIG Apps and WG Batch have worked on this …
-
Kubernetes v1.26: CPUManager goes GA
Tuesday, December 27, 2022 in Blog
Author: Francesco Romani (Red Hat) The CPU Manager is a part of the kubelet, the Kubernetes node agent, which enables the user to allocate exclusive CPUs to containers. Since Kubernetes v1.10, where it graduated to Beta, the CPU Manager proved itself …
-
Kubernetes 1.26: Pod Scheduling Readiness
Monday, December 26, 2022 in Blog
Author: Wei Huang (Apple), Abdullah Gharaibeh (Google) Kubernetes 1.26 introduced a new Pod feature: scheduling gates. In Kubernetes, scheduling gates are keys that tell the scheduler when a Pod is ready to be considered for scheduling. What problem …
-
Kubernetes 1.26: Support for Passing Pod fsGroup to CSI Drivers At Mount Time
Friday, December 23, 2022 in Blog
Authors: Fabio Bertinatto (Red Hat), Hemant Kumar (Red Hat) Delegation of fsGroup to CSI drivers was first introduced as alpha in Kubernetes 1.22, and graduated to beta in Kubernetes 1.25. For Kubernetes 1.26, we are happy to announce that this …