Automating Confidential Containers (CoCo) infrastructure with Kyverno
Confidential Containers (CoCo) adds a critical security layer for containerized workloads, especially in environments where parts of the platform are not inherently trusted. However, deploying CoCo-enabled workloads often requires application teams to manage infrastructure-heavy details that…
CNCF Welcomes CVS Health as a Platinum Member To Expand Cloud Native Collaboration
CVS Health strengthens commitment to secure healthcare and modernization efforts further reducing engineering complexity SAN FRANCISCO, California – May 18, 2026 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software,…
What kubectl debug doesn’t tell you: The silent evidence gap
The session that left no record A kubectl debug session can contain the only direct observation of a failing system state. However, once the session ends, Kubernetes does not retain the termination context of that session…
Extending AI gateways with Rust: Custom transformations in kgateway
Every gateway ships with a set of built-in policies. Authentication. Rate limiting. Request routing. Prompt guards. These cover most use cases. But what about the ones they don’t cover? What if you need to add a…
When AI agents become contributors: How KubeStellar reached 81% PR acceptance
In mid-December, I started building KubeStellar Console from scratch. It’s a multi-cluster management dashboard for Kubernetes, and it sits inside the KubeStellar project in the Cloud Native Computing Foundation (CNCF) Sandbox. The stack is Go on the back…
CNCF Debuts KubeCon + CloudNativeCon Japan 2026 Schedule
Second annual Japanese event to spotlight AI, observability, platform engineering and more Key Highlights: YOKOHAMA, Japan, May 13, 2026 – The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, today announced…
Building a cloud native platform from the ground up with Kairos, k0rdent, and bindy
As we shared in our earlier post on FluxCD, RBC Capital Markets has been on a deliberate journey to modernize our Kubernetes platform. GitOps with FluxCD gave us a solid deployment foundation. But as our platform grew,…
Challenges The aim was to reduce dependency on vendor-specific implementations, improve scalability, and ensure data sovereignty and regulatory compliance, while competing with public cloud providers. Technical challenges included building a platform capable of handling 600+ clusters…
A decade of governance: Cloud Custodian at 10 and its role in the agentic AI era
What is Cloud Custodian? It is an open source, stateless policy engine used to manage public cloud environments, Kubernetes and infrastructure as code through a unified DSL. As an incubating project within CNCF, it allows organizations…
The New Stack: “Why Prometheus couldn’t see Cilium metrics at 2 a.m.”
Tame the Kubernetes “integration tax.” Learn how to wire CNCF projects like Prometheus and Cilium for production-grade reliability.