Since KubeCon Europe is approaching us tomorrow, you can already enjoy numerous great talks at Cloud Native Rejekts Europe 2025. It features two tracks: The Nash (main room) and The Waterloo (side room), where ~50 talks are delivered during two days.

You can find live streams for all these talks on YouTube:
- Yesterday’s recordings:
- The Nash
- The Waterloo
- Today’s streams (they will start in 20 minutes!):
- The Nash
- The Waterloo

P.S. The full schedule for this conference is available here.

#events #video

Amazon EKS introduced a new catalogue of community add-ons, simplifying the use and management of well-known Open Source components in Kubernetes clusters.

Currently, it features metrics-server, kube-state-metrics, cert-manager, prometheus-node-exporter, and external-dns. All of them were packaged and validated for EKS, and hosted in the EKS-owned private ECR. You can work with add-ons via EKS Console, API, CLI, eksctl, and CloudFormation.

Find more details in this announcement and relevant documentation.

#news #AWS

Don't FOMO if you're not at KubeCon London this time. The livestream for KubeCon + CloudNativeCon Europe 2025 keynotes has just started! You can join watching them here today as well as on Thursday and Friday.

Here’s also a short introduction to this KubeCon's Project Pavilion presented by Jorge Castro, a DevRel at CNCF.

Finally, you can see the first videos from yesterday's KubeCon co-located events, such as ArgoCon and Cloud Native Telco Day, uploaded to the CNCF YouTube account already.

#events #video

During today’s KubeCon keynotes, it was announced that Headlamp became a part of Kubernetes SIG UI. You can already see that its official repository is now kubernetes-sigs/headlamp.

SIG UI is a Kubernetes Special Interest Group that “covers all things UI related” to K8s. Originally, its efforts were focused on the Kubernetes dashboard, and now they would be extended to Headlamp. Headlamp was originally created in Kinvolk (acquired by Microsoft in 2021) and became a CNCF Sandbox project in 2023.

#news #cncfprojects #gui

Another interesting announcement from the KubeCon keynotes is that the CNCF has launched its job board, GitJobs, focused on Open Source. It promotes opportunities that contribute back to upstream projects, and posting the job listings there is free.

The platform itself is Open Source, written in Rust and available on GitHub.

#career #news

Yesterday, a Helm fork was announced. It addresses various issues and brings new features to those relying on Helm charts in their Kubernetes deployment process.

Here’s what Nelm, dubbed as a “Helm 3 alternative”, offers:
- Server-Side Apply instead of 3-Way Merge for updating resources;
- advanced resource ordering;
- real-time logs, events, resource statuses, and errors during deployment;
- improved CRD management;
- release plan previewing (similar to terraform plan);
- secrets management.

Language: Go | License: Apache 2.0 | 458 ⭐️

▶️ GitHub repo
📢 Announcement
💬 Reddit discussion

#news #tools

The Linux Foundation Europe launched NeoNephos, a new foundation focused on facilitating a sovereign cloud in Europe. It is backed by European Union funding and supported by the first seven members, including SAP, STACKIT, and T-Systems.

Interestingly, it heavily relies on Kubernetes as its fundamental technology. This is outlined by the list of projects on the NeoNephos website. It includes such Open Source projects as Gardener (a well-known solution implementing Kubernetes-as-a-Service) and CobaltCore (an opinionated OpenStack distribution featuring managed Kubernetes and Kubernetes-based operators for automation).

#news

Kubernetes 1.33 will be released on April 23rd, two weeks from now. It will boast 64 enhancements, including 26 new alpha features. The latter includes support for user namespaces within Linux Pods, in-place resource resize for vertical scaling of Pods, and ordered namespace deletion.

Find a detailed overview of major features and changes coming to Kubernetes 1.33 in this blog post by Cloudsmith and a shorter sneak peek on the project’s official blog.

#news #releases

Have you missed our Cloud Native software digests? Here comes the latest one!

Release Spotlight: Kubeflow 1.10

Kubeflow, a machine learning toolkit for Kubernetes (a CNCF Incubating project), has received many significant changes with its 1.10 release. Training Operator now supports JAX for distributed training, and Katib introduced a new high-level API for hyperparameter tuning. Spark Operator became a core Kubeflow component, with its 2.1.0 included in the platform.

The project got a new user-friendly web UI for Model Registry to manage ML models. The Model Registry was also better integrated with KServe via Custom Storage Initializer (CSI), and KServe got a new Python SDK. Finally, lots of security-related updates arrived, such as leveraging rootless containers in Kubeflow manifests and replacing OIDC-authservice with oauth2-proxy.

Other noticeable updates in the Cloud Native space:

1. KubeVirt, a virtual machine management solution for Kubernetes (a CNCF Incubating project), released its v1.5 a month ago. It brought several features to GA, including migration update strategy and volume migration, auto resource limits for VMIs, VM live updates for hotplugging of CPU/memory/volume resources, and a network binding plugin. It also introduced migrations for hotplugged volumes and dynamic control for the network interface’s link state.

2. Headlamp, a Kubernetes web UI (now part of Kubernetes SIG UI), released 0.30.0. It features two new locales (Traditional Chinese and Italian), an ability to show Custom Resources details in the overlay panel, and a few other improvements.

3. Fluent Bit, a lightweight telemetry agent developed under the umbrella of Fluentd (a CNCF Graduated project), has reached v4.0.0. It comes with conditional processing for logs (i.e. modifying logs based on specific field values), a new trace sampling processor with a pluggable architecture, security enhancements, and experimental support for plugins written in Zig.

4. Thanos, highly available Prometheus with long-term storage (a CNCF Incubating project), released v0.38.0, which added OTLP receiver, native histogram downsampling, caching for regex matchers in series calls, support for chain deduplication algorithm and query offset, and more.

5. Flagger, a progressive delivery Kubernetes operator (part of Flux, a CNCF Graduated project), released 1.41.0, introducing Knative support, support for primary backend cookies in session affinity (Gateway API), and added headers to the Prometheus requests.

6. kgateway, a Cloud Native API Gateway and AI Gateway (a recently accepted CNCF Sandbox project), unveiled the second major release, v2.0.0. It came with custom resources extending Gateway API, better traffic management and security capabilities, open-sourced AI Gateway, and Istio Ambient Waypoint integration.

7. KEDA, a Kubernetes-based Event Driven Autoscaling (a CNCF Graduated project), was updated to v2.17.0, featuring two new scalers (NSQ and Temporal) and a few deprecations.

#news #releases

Many of us thought or even seriously considered using a general-purpose language instead of YAML for the Kubernetes manifests. Here’s a new project that is solving this issue.

k8skonf allows you to describe your Kubernetes resources in TypeScript and convert them to regular YAML manifests. It’s similar to the cdk8s framework but intentionally limited by one specific language, ensuring its full support. Currently, it also works with CRDs and Helm charts. The project roadmap mentions plans to support Kustomize files and multiple versions of K8s.

Language: TypeScript | License: MPL 2.0 | 30 ⭐️

▶️ GitHub repo
💬 Reddit discussion

#tools

The talks from KubeCon Europe 2025 are now available on YouTube. This playlist features 379 videos.

Note that recordings from the co-located events have not yet been uploaded, but they will be there by the end of this week. Currently, you can find the videos from ArgoCon (34 talks) and Cloud Native Telco Day (11 talks) only.

Finally, the event graphical snapshot highlighting its main stats — such as the record-setting 12418 overall attendees for KubeCon — is attached to this post.

#events #video

GitHub Dependabot now supports Helm. By leveraging the Dependabot version updates, you can ensure the Helm dependencies of your app hosted on GitHub are up to date.

Currently, it works only with image updates in values.yaml, yet a support for the kustomization.yaml files might be added later.

Find more details in the formal announcement and this issue.

#news #security

The most actively developed CNCF projects in 2024 were:

1. Kubernetes
2. OpenTelemetry
3. Argo
4. Backstage
5. Prometheus
6. Cilium
7. gRPC
8. Envoy
9. Meshery
10. Keycloak

That’s what the latest review of the CNCF project velocity revealed. This Top 10 is defined by the number of authors contributing to the projects’ repositories. The graph axes also reflect other criteria, such as commits, PRs, and issues.

You can find a full interactive map with all the projects and related data in this spreadsheet. The scripts used to gather and generate this data are available on GitHub.

#news #cncfprojects

Kubernetes 1.33 was just released and codenamed Octarine.

It brings 64 enhancements: 18 stable, 20 beta, 24 alpha, and 2 deprecated. New alpha features include:

- New configuration option for kubectl with .kuberc for user preferences
- Configurable tolerance for HorizontalPodAutoscalers
- Configurable container restart delay
- Custom container stop signals
- Numerous Dynamic Resource Allocation (DRA) enhancements
- Robust image pull policy to authenticate images for IfNotPresent and Never
- Node topology labels are available via downward API
- Better Pod status with generation and observed generation
... and more!

Features that became stable in v1.33 include Sidecar containers, Job success policy, and nftables backend for kube-proxy.

Find full details in this formal announcement.

#news #releases

OpenTofu just became a CNCF Sandbox project.

#news #cncfprojects

The latest Open Source drama came straight into the CNCF's hands. We haven’t seen such cases before: Synadia, the principal maintainer and original creator of NATS, a CNCF Incubating project, wants to get the ownership for this project back from the vendor-neutral home.

Synadia’s plan involved becoming the owner of the NATS project again and switching to the BSL license—which OSI does not consider Open Source—for future releases to ensure its business sustainability. However, CNCF insists there is no “way out” for the foundation's projects and suggests forking its repositories instead.

While Synadia is undoubtedly the leading developing force for NATS, the CNCF has helped the project thrive in many ways since its donation in 2018. In addition to the obvious marketing benefits, NATS also received funding for two third-party security audits and financial support for trademark legal expenses.

If Synadia stops contributing to NATS and there is not enough interest from other community members in developing a project, it might end up archived in the CNCF. The CNCF TOC has already started evaluating the health of this project.

Find more details about this story in the:
- original blog post by CNCF (posted on April 24th and updated on April 28th);
- official answer from Synadia (April 25th);
- Bluesky thread started by Joe Beda (posted on April 26th and answered by Derek Collison, founder and CEO @ Synadia);
- CNCF TOC issue regarding NATS health state.

#news #cncfprojects

What could be the best possible outcome of the NATS case? “CNCF and Synadia today announced that the widely-adopted NATS project will continue to thrive in the cloud native open source ecosystem of the CNCF with Synadia’s continued support and involvement.”

It’s not a fiction, it’s for real! Bravo to all the parties involved 🥳

#news #cncfprojects

Last month, in-toto became the latest (31st) CNCF Graduated project.

in-toto is an SSC (software supply chain) security framework created at the NYU Tandon School of Engineering. Written in Python, it ensures the integrity of a software product from initiation to end-user installation by informing the user which steps are performed and when. The project joined the CNCF Sandbox in 2019, became Incubating in 2022, and was declared Graduated now.

Find more details in the official graduation announcement, project website and main GitHub repo.

#news #cncfprojects

Happy to share our newest digest of the prominent software updates in the Cloud Native ecosystem!

1. Envoy, a high-performance edge/middle/service proxy (a CNCF Graduated project), has seen its 1.34.0 release with alpha support for asynchronous load balancing, initial support for shared libraries to be loaded at runtime, support for Fluentd tracer, configurable custom commands for Redis proxy, configurable backoff strategy for TCP proxy retries, new compliance policies TLS parameter to enforce restrictions, and much more.

2. Percona Everest, a Cloud Native database platform for managing PostgreSQL, MongoDB and MySQL instances, was updated to 1.6.0. It introduced support for manual storage scaling, seamless major version upgrades for MongoDB, support for PostgreSQL 17, and other enhancements.

3. Rook, a storage orchestration for Kubernetes (a CNCF Graduated project), released its v1.17 with numerous updates. They include secure ObjectBucketClaims by default, credential management for CephObjectStoreUser, authentication mechanism for bucket notifications using Kafka topics, Ceph CSI 3.14 and improved Ceph CSI Operator, external (configured outside the Kubernetes cluster) mons, and Kubernetes v1.33 support.

4. Artifact Hub, a web application to find and install Cloud Native packages (a CNCF Incubating project), reached v1.21.0, featuring support for bootable containers images and experimental deletion protection.

5. Linkerd, a service mesh for Kubernetes (a CNCF Graduated project), announced 2.18 with optional protocol declarations (in addition to existing auto-detection), GitOps-compatible multicluster linking, decoupled Gateway API, and experimental Windows support.

6. Vitess, a database clustering system for horizontal scaling of MySQL (a CNCF Graduated project), released 22.0.0 with prepared statements, new VTGate metrics, stalled-disk recovery, improved errant GTID detection, better performance, and updated Kubernetes operator with automated backups and Kubernetes 1.32 support.

#news #releases

Tomorrow, KubeCrash will host another online conference about Cloud Native technologies for Platform Engineers. It will feature a panel discussion on observability in Platform Engineering and 13 talks and keynotes, all delivered by well-known CNCF Ambassadors, engineers, and tech leaders.

KubeCrash Spring 2025 is an entirely free online event. It will start tomorrow (May 8th) at 4 PM CET (10 AM ET, 7 AM PT). Check the full schedule and register to participate if you're interested.

#events

Perhaps most engineers still prefer to type full, even if quite long, CLI commands in their terminals. However, with all the GenAI hype we have now, automated assistance comes everywhere, and good old kubectl is not an exception.

kubectl-ai was created in the Google GKE team, enabling a chatbot-style experience for your kubectl commands. It runs in interactive mode or as a kubectl plugin and allows you to:
- use simple English to construct and execute the kubectl commands, including the required sequences of such;
- benefit from the UNIX shell integration by leveraging pipelines and basic CLI tools (echo, cat, etc.);
- run commands only after your explicit approval;
- use OpenAI, Gemini, Azure OpenAI, Grok, and local AI models (via Ollama or llama.cpp);
- evaluate the performance of different LLM models [for Kubernetes-related tasks] via its own benchmark called k8s-bench.

Language: Go | License: Apache 2.0 | 2529 ⭐️

▶️ GitHub repo
💬 Reddit discussion

#tools #CLI #genai