Posts in 2021
What's new in Security Profiles Operator v0.4.0
By Jakub Hrozek, Juan Antonio Osorio, Paulo Gomes, Sascha Grunert | Friday, December 17, 2021 in Blog
The Security Profiles Operator (SPO) is an out-of-tree Kubernetes enhancement to make the management of seccomp, SELinux and AppArmor profiles easier and more convenient. We're happy to announce that we recently released v0.4.0 of the operator, which …
Kubernetes 1.23: StatefulSet PVC Auto-Deletion (alpha)
By Matthew Cary (Google) | Thursday, December 16, 2021 in Blog
Kubernetes v1.23 introduced a new, alpha-level policy for StatefulSets that controls the lifetime of PersistentVolumeClaims (PVCs) generated from the StatefulSet spec template for cases when they should be deleted automatically when the StatefulSet …
Kubernetes 1.23: Prevent PersistentVolume leaks when deleting out of order
By Deepak Kinni (VMware) | Wednesday, December 15, 2021 in Blog
PersistentVolume (or PVs for short) are associated with Reclaim Policy. The Reclaim Policy is used to determine the actions that need to be taken by the storage backend on deletion of the PV. Where the reclaim policy is Delete, the expectation is …
Kubernetes 1.23: Kubernetes In-Tree to CSI Volume Migration Status Update
By Jiawei Wang (Google) | Friday, December 10, 2021 in Blog
The Kubernetes in-tree storage plugin to Container Storage Interface (CSI) migration infrastructure has already been beta since v1.17. CSI migration was introduced as alpha in Kubernetes v1.14. Since then, SIG Storage and other Kubernetes special …
Kubernetes 1.23: Pod Security Graduates to Beta
By Jim Angel (Google), Lachlan Evenson (Microsoft) | Thursday, December 09, 2021 in Blog
With the release of Kubernetes v1.23, Pod Security admission has now entered beta. Pod Security is a built-in admission controller that evaluates pod specifications against a predefined set of Pod Security Standards and determines whether to admit or …
Kubernetes 1.23: Dual-stack IPv4/IPv6 Networking Reaches GA
By Bridget Kromhout (Microsoft) | Wednesday, December 08, 2021 in Blog
"When will Kubernetes have IPv6?" This question has been asked with increasing frequency ever since alpha support for IPv6 was first added in k8s v1.9. While Kubernetes has supported IPv6-only clusters since v1.18, migration from IPv4 to …
Kubernetes 1.23: The Next Frontier
By Kubernetes 1.23 Release Team | Tuesday, December 07, 2021 in Blog
We’re pleased to announce the release of Kubernetes 1.23, the last release of 2021! This release consists of 47 enhancements: 11 enhancements have graduated to stable, 17 enhancements are moving to beta, and 19 enhancements are entering alpha. Also, …
Contribution, containers and cricket: the Kubernetes 1.22 release interview
By Craig Box (Google) | Wednesday, December 01, 2021 in Blog
The Kubernetes release train rolls on, and we look ahead to the release of 1.23 next week. As is our tradition, I'm pleased to bring you a look back at the process that brought us the previous version. The release team for 1.22 was led by Savitha …
Quality-of-Service for Memory Resources
By Tim Xu (Tencent Cloud) | Friday, November 26, 2021 in Blog
Kubernetes v1.22, released in August 2021, introduced a new alpha feature that improves how Linux nodes implement memory resource requests and limits. In prior releases, Kubernetes did not support memory quality guarantees. For example, if you set …
Dockershim removal is coming. Are you ready?
By Sergey Kanzhelev (Google) | Friday, November 12, 2021 in Blog
Reviewers: Davanum Srinivas, Elana Hashman, Noah Kantrowitz, Rey Lejano. Poll closed This poll closed on January 7, 2022. Last year we announced that Kubernetes' dockershim component (which provides a built-in integration for Docker Engine) is …