The latest containerd patch release fixes critical CRI bugs including registry mirror configuration, CNI DEL handling after restarts, and an AppArmor regression affecting unix domain sockets.
Learn how to migrate from Ingress-NGINX to Gateway API using the stable 1.0 release of Ingress2Gateway, featuring support for over 30 annotations and comprehensive integration testing.
Kubernetes v1.36, scheduled for late April 2026, introduces Dynamic Resource Allocation (DRA) for partitionable devices, faster SELinux volume mounting, external token signing, and deprecates service.spec.externalIPs.
Financial services organizations can now run PCI DSS workloads on shared-tenancy Amazon EKS without dedicated hosts - here's how to architect compliant Kubernetes infrastructure while balancing cost, security, and scalability.
Kubernetes v1.36 arrives late April 2026 with notable deprecations including Ingress NGINX retirement, API removals, and exciting new enhancements across storage, security, and networking.
Kubernetes 1.36 preview shows DRA hardware maintenance support and Linux User Namespaces graduating to GA for April 2026 release.
The Kubernetes Gateway API migration tool hits 1.0, offering a GA path off legacy Ingress for WordPress hosts and modern cluster operators.
SIG Network releases official migration tool with 30 plus annotation support and integration testing.
Argo Rollouts graduates to General Availability, bringing stable APIs and production-ready progressive delivery capabilities for Kubernetes deployments.
Kubernetes v1.30 brings Dynamic Resource Allocation to GA, improved Pod Security Standards, and enhanced memory QoS—key updates for platform engineering teams.
AWS introduces session policies for EKS Pod Identity, enabling dynamic IAM permission scoping without creating additional roles—solving multi-tenant permission challenges.
Kubernetes v1.30 introduces the PodLifecycleSleepAction feature, providing configurable sleep windows during pod termination to prevent dropped connections and request failures.
Higress joins CNCF Sandbox, offering unified Ingress Controller and AI gateway capabilities built on Envoy and Istio for enterprise workloads.
AWS EKS introduces session policies for Pod Identity, enabling fine-grained IAM permission scoping without creating additional IAM roles.
Learn how to migrate from Ingress-NGINX to Gateway API using the stable 1.0 release of Ingress2Gateway, featuring support for over 30 annotations and comprehensive integration testing.
Grafana Cloud AI Observability and the OpenLIT Operator point to a practical operational pattern for LLM workloads on Kubernetes: instrument by policy, collect with OpenTelemetry, and make cost, latency, and quality visible without asking every application team to wire tracing by hand.
Kyverno’s policy-as-code approach keeps gaining traction because it meets Kubernetes teams where they already work: YAML, CRDs, admission control, and cluster-native workflows. The real value is not novelty but operational fit.
Morgan Stanley’s multi-year Flux journey shows that GitOps at enterprise scale is not just about choosing a reconciler. It is about onboarding, tenancy boundaries, source-of-truth design, and relentless tuning once the cluster count and resource count get large.
ARC 0.14.0 introduces multilabel support for runner scale sets, a new scaleset library client, and experimental Helm charts.
Kyverno provides Kubernetes-native Policy-as-Code using YAML instead of Rego, with validation, mutation, and generation policies for cluster governance.
