Kubernetes in production: operating etcd with etcdadm
There are three high-level requirements to operating an etcd cluster in production: Each etcd member must be bootstrapped: The etcd binary has to be on the host and the runtime parameters must be defined. The list…
SDxCentral: "Etcd joins CNCF’s growing cache of open source projects"
That list’s newest member was added today as etcd slid under that umbrella as an Incubating project. Etcd is the primary storage location for Kubernetes and needs to be established before Kubernetes can be run on…
Today, the Cloud Native Computing Foundation (CNCF) Technical Oversight Committee (TOC) voted to accept etcd as an incubation-level hosted project from KubeCon + CloudNativeCon Seattle. etcd is a distributed key value store that provides a reliable…
The great migration: Why every AI platform is converging on Kubernetes
When Kubernetes launched a decade ago, its promise was clear: make deploying microservices as simple as running a container. Fast forward to 2026, and Kubernetes is no longer “just” for stateless web services. In the CNCF…
Kyverno 1.17 is a landmark release that marks the stabilization of our next-generation Common Expression Language (CEL) policy engine. While 1.16 introduced the “CEL-first” vision in beta, 1.17 promotes these capabilities to v1, offering a high-performance,…
k0s in 2025: A year of community growth, governance, and Kubernetes innovation
As we begin 2026, it’s worth reflecting on the remarkable progress we made with k0s as a project and as a community during 2025. Last year brought exciting advancements, adoption, and stronger community engagement. k0s is…
CNCF On-Demand: One API to Rule Them All – Building a Unified Platform with Kubernetes Aggregation
How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build…
Securing the Node: A Primer on Cilium’s Host Firewall
When discussing Kubernetes network security, much of the attention focuses on pod-to-pod traffic, ingress controllers, and service meshes. But what about the underlying nodes themselves, the very foundation on which our workloads run? The attack surface…
Smart Uses of imagePullSecrets in Kubernetes Cluster with ServiceAccounts
Kubernetes is everywhere nowadays, so are the container images and fetching the images from a private registry is a norm because of N number of reasons including security, that being the topmost. Recap Just to give…
Announcing Kyverno Release 1.14!
TL;DR We are excited to announce the release of Kyverno 1.14.0, marking a significant milestone in our journey to make policy management in Kubernetes more modular, streamlined, and powerful. This release introduces two new policy types…