Kubernetes Blog

Using Admission Controllers to Detect Container Drift at Runtime

Tuesday, December 21, 2021 in Blog

Author: Saifuding Diliyaer (Box) Illustration by Munire Aireti At Box, we use Kubernetes (K8s) to manage hundreds of micro-services that enable Box to stream data at a petabyte scale. When it comes to the deployment process, we run kube-applier …

Kubernetes 1.23 Prevent PersistentVolume leaks when deleting out of order

Wednesday, December 15, 2021 in Blog

Author: Deepak Kinni (VMware) PersistentVolume (or PVs for short) are associated with Reclaim Policy. The Reclaim Policy is used to determine the actions that need to be taken by the storage backend on deletion of the PV. Where the reclaim policy is …

Pod Security Graduates to Beta

Thursday, December 09, 2021 in Blog

Authors: Jim Angel (Google), Lachlan Evenson (Microsoft) With the release of Kubernetes v1.23, Pod Security admission has now entered beta. Pod Security is a built-in admission controller that evaluates pod specifications against a predefined set of …

Kubernetes 1.23: Dual-stack IPv4/IPv6 Networking Reaches GA

Wednesday, December 08, 2021 in Blog

Author: Bridget Kromhout (Microsoft) "When will Kubernetes have IPv6?" This question has been asked with increasing frequency ever since alpha support for IPv6 was first added in k8s v1.9. While Kubernetes has supported IPv6-only clusters …

Kubernetes 1.23: The Next Frontier

Tuesday, December 07, 2021 in Blog

Authors: Kubernetes 1.23 Release Team We’re pleased to announce the release of Kubernetes 1.23, the last release of 2021! This release consists of 47 enhancements: 11 enhancements have graduated to stable, 17 enhancements are moving to beta, and 19 …

Contribution, containers and cricket: the Kubernetes 1.22 release interview

Wednesday, December 01, 2021 in Blog

Author: Craig Box (Google) The Kubernetes release train rolls on, and we look ahead to the release of 1.23 next week. As is our tradition, I'm pleased to bring you a look back at the process that brought us the previous version. The release team for …

Quality-of-Service for Memory Resources

Friday, November 26, 2021 in Blog

Authors: Tim Xu (Tencent Cloud) Kubernetes v1.22, released in August 2021, introduced a new alpha feature that improves how Linux nodes implement memory resource requests and limits. In prior releases, Kubernetes did not support memory quality …

Dockershim removal is coming. Are you ready?

Friday, November 12, 2021 in Blog

Author: Sergey Kanzhelev, Google. With reviews from Davanum Srinivas, Elana Hashman, Noah Kantrowitz, Rey Lejano. Last year we announced that Dockershim is being deprecated: Dockershim Deprecation FAQ. Our current plan is to remove dockershim from …

Non-root Containers And Devices

Tuesday, November 09, 2021 in Blog

Author: Mikko Ylinen (Intel) The user/group ID related security settings in Pod's securityContext trigger a problem when users want to deploy containers that use accelerator devices (via Kubernetes Device Plugins) on Linux. In this blog post I talk …

Announcing the 2021 Steering Committee Election Results

Monday, November 08, 2021 in Blog

Author: Kaslin Fields The 2021 Steering Committee Election is now complete. The Kubernetes Steering Committee consists of 7 seats, 4 of which were up for election in 2021. Incoming committee members serve a term of 2 years, and all members are …

Posts in 2021