Posts in 2024
Spotlight on SIG Node
By Arpit Agrawal | Thursday, June 20, 2024 in Blog
In the world of container orchestration, Kubernetes reigns supreme, powering some of the most complex and dynamic applications across the globe. Behind the scenes, a network of Special Interest Groups (SIGs) drives Kubernetes' innovation and …
10 Years of Kubernetes
By Bob Killen (CNCF), Chris Short (AWS), Frederico Muñoz (SAS), Kaslin Fields (Google), Tim Bannister (The Scale Factory), and every contributor across the globe | Thursday, June 06, 2024 in Blog
Ten (10) years ago, on June 6th, 2014, the first commit of Kubernetes was pushed to GitHub. That first commit with 250 files and 47,501 lines of go, bash and markdown kicked off the project we have today. Who could have predicted that 10 years …
Completing the largest migration in Kubernetes history
By Andrew Sy Kim (Google), Michelle Au (Google), Walter Fender (Google), Michael McCune (Red Hat) | Monday, May 20, 2024 in Blog
Since as early as Kubernetes v1.7, the Kubernetes project has pursued the ambitious goal of removing built-in cloud provider integrations (KEP-2395). While these integrations were instrumental in Kubernetes' early development and growth, their …
Gateway API v1.1: Service mesh, GRPCRoute, and a whole lot more
By Richard Belleville (Google), Frank Budinsky (IBM), Arko Dasgupta (Tetrate), Flynn (Buoyant), Candace Holman (Red Hat), John Howard (Solo.io), Christine Kim (Isovalent), Mattia Lavacca (Kong), Keith Mattix (Microsoft), Mike Morris (Microsoft), Rob Scott (Google), Grant Spence (Red Hat), Shane Utt (Kong), Gina Yeh (Google), and other review and release note contributors | Thursday, May 09, 2024 in Blog
Following the GA release of Gateway API last October, Kubernetes SIG Network is pleased to announce the v1.1 release of Gateway API. In this release, several features are graduating to Standard Channel (GA), notably including support for service …
Container Runtime Interface streaming explained
By Sascha Grunert | Wednesday, May 01, 2024 in Blog
The Kubernetes Container Runtime Interface (CRI) acts as the main connection between the kubelet and the Container Runtime. Those runtimes have to provide a gRPC server which has to fulfill a Kubernetes defined Protocol Buffer interface. This API …
Kubernetes 1.30: Preventing unauthorized volume mode conversion moves to GA
By Raunak Pradip Shah (Mirantis) | Tuesday, April 30, 2024 in Blog
With the release of Kubernetes 1.30, the feature to prevent the modification of the volume mode of a PersistentVolumeClaim that was created from an existing VolumeSnapshot in a Kubernetes cluster, has moved to GA! The problem The Volume Mode of a …
Kubernetes 1.30: Multi-Webhook and Modular Authorization Made Much Easier
By Rita Zhang (Microsoft), Jordan Liggitt (Google), Nabarun Pal (VMware), Leigh Capili (VMware) | Friday, April 26, 2024 in Blog
With Kubernetes 1.30, we (SIG Auth) are moving Structured Authorization Configuration to beta. Today's article is about authorization: deciding what someone can and cannot access. Check a previous article from yesterday to find about what's new in …
Kubernetes 1.30: Structured Authentication Configuration Moves to Beta
By Anish Ramasekar (Microsoft) | Thursday, April 25, 2024 in Blog
With Kubernetes 1.30, we (SIG Auth) are moving Structured Authentication Configuration to beta. Today's article is about authentication: finding out who's performing a task, and checking that they are who they say they are. Check back in tomorrow to …
Kubernetes 1.30: Validating Admission Policy Is Generally Available
By Jiahui Feng (Google) | Wednesday, April 24, 2024 in Blog
On behalf of the Kubernetes project, I am excited to announce that ValidatingAdmissionPolicy has reached general availability as part of Kubernetes 1.30 release. If you have not yet read about this new declarative alternative to validating admission …
Kubernetes 1.30: Read-only volume mounts can be finally literally read-only
By Akihiro Suda (NTT) | Tuesday, April 23, 2024 in Blog
Read-only volume mounts have been a feature of Kubernetes since the beginning. Surprisingly, read-only mounts are not completely read-only under certain conditions on Linux. As of the v1.30 release, they can be made completely read-only, with alpha …