Daily Kubernetes news, events, jobs, podcast and more

Spotlight

Vault: secure Kubernetes authentication with hashicorp Vault OIDC

Felix Hoang

This tutorial teaches how to eliminate static kubeconfig files by configuring HashiCorp Vault as an OIDC provider for authentication with dynamic, short-lived tokens.

Stop Opening AWS Tickets: Build a Self-Service Platform with Backstage + Crossplane
Sajosam
This tutorial shows how to build a self-service IDP where developers provision real AWS S3 buckets via a Backstage form, with Crossplane handling AWS API calls through Kubernetes CRDs.
What 6 Months of Tracking a Production OpenShift Cluster Revealed About Kubernetes Costs
Rodrigue Chakode
This article explains what six months of production OpenShift cost tracking revealed, including a 24 to 30 percent non-allocatable CPU tax and how infrastructure overhead can consume most cluster capacity before app workloads even start.
Kubeshark: Making Packet Level Visibility in Kubernetes
Anish Kumar – The DevOps Guy
This article explains how Kubeshark provides packet-level visibility in Kubernetes by capturing live pod traffic, decoding protocols such as HTTP and gRPC, and mapping requests back to workloads for debugging.

Tools and utilities

xpdig
xpdig is a terminal UI for exploring Crossplane traces like k9s, so you can inspect object trees, watch changes, and run kubectl actions while debugging composed resources.
Mocker
Mocker is a Docker-compatible CLI and Compose tool for macOS that runs on Apple’s Containerization framework, so existing Docker commands and compose files work without Docker Desktop.
Pyrra
Pyrra is a Kubernetes operator that helps you make SLOs with Prometheus manageable, accessible, and easy to use for everyone.
Tilt
Tilt automates the full dev loop for Kubernetes microservices — file watching, container image builds, and live updates to your cluster, replacing manual docker build && kubectl apply cycles with a single tilt up command and a real-time UI.
SOPS Operator: secrets management
This tool runs inside Kubernetes and automatically decrypts secrets encrypted with Mozilla SOPS, and then creates standard Kubernetes Secret objects from them.

More projects →

Events starting soon

SREday Austin 2026
May 6, 2026
- Location: Austin, TX, USA
- This event requires an entrance fee
Owning the Stack: Why Building a Private Automation Engine was Easier (and Harder) Than I Thought
May 7, 2026
- Location: Malmö, SE
- This is a free event.
From mutable to immutable OS, our Kubernetes Cluster API journey
May 7, 2026
- Location: Genève, CH
- This is a free event.
GitOps at Scale: The App of Apps Pattern with Argo CD
May 7, 2026
- Location: Thessaloníki, GR
- This is a free event.
Confidential Computing with CoCo and Kata
May 7, 2026
- Location: Madrid, ES
- This is a free event.
CKA Exam: Exploring the New Challenges - Gateway API, Operators, and More
May 7, 2026
- This is a virtual event
- This is a free event.

Discover more events onn Kube Events →

Learn from production

Orchestrating Secure AI Agents on Amazon EKS
Matt Camp
This case study shows how Unitary built Osmia, an open-source orchestration layer on EKS to run autonomous AI coding agents safely at scale using pod isolation, Karpenter, IRSA-based secrets, and real-time trajectory scoring.
Our Kubernetes Cluster Was Costing $14,850/Month. We Moved to Fly.io for $680.
Aditya Suryawanshi
This is a war story about a 3-person startup that replaced a $14,850/month over-engineered Kubernetes setup on AWS with Fly.io for $680, cutting P99 latency from 320ms to 180ms and deploy time from 8 minutes to 45 seconds.
Two Production Incidents That Taught Me More Than Any Course
Ejiroghene Laurel Dafe
This case study shows how one engineer resolved two real Kubernetes production incidents involving an overly aggressive Ingress rate limit and Istio breaking non-HTTP socket traffic.
In-place PVC re-binding: zero-downtime disk migration on Kubernetes
Maxim Nazarenko
This case study explains how to migrate bound Kubernetes volumes from deprecated in-tree Azure Disk provisioning to CSI with in-place PVC re-binding, minimal restarts, and no data loss across production disks.

More case studies →

Matching jobs

- Autonomous Driving Academy Intern (All genders) - Operator Enablement & Commercial Operations with MOIA
- Salary: $45K to $382.8K a year
- Location: remote from
- Tech stack: Kubernetes, Javascript, Python, Shell
- Chief Technology Officer with MOIA
- Salary: $135K to $440K a year
- Location: remote from
- Tech stack: Kubernetes
- Data Engineer with K Health
- Salary: $150K to $180K a year
- Location: based in the office (and remote from home) in New York, NY, USA
- Tech stack: Kubernetes, AWS, Azure, GCP, Python, SQL, Airflow
- Data Engineer with Latitude AI
- Salary: $54K to $297.88K a year
- Location: based in the office in Pittsburgh, PA, USA
- Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Python, SQL, PostgreSQL, Snowflake, Kafka
- Data Engineer with Truelogic
- Salary: $54K to $297.88K a year
- Location: remote from
- Tech stack: Kubernetes, AWS, Docker, Python, Airflow, CDK, Cloudformation, Terraform

Discover more Kubernetes jobs on Kube Careers →

Build something

Designing an Elastic Kubernetes Platform on VMware vSphere with Cluster API and Cluster Autoscaler
M. Syawal Saputra
This tutorial teaches how to build an elastic Kubernetes platform on VMware vSphere using Cluster API, Talos, and Cluster Autoscaler for declarative provisioning and automatic node scaling.
Automated GitOps: from ECR push to EKS deploy
Alexandr Ivenin
This tutorial shows how to automate EKS deployments with Argo CD, Argo CD Image Updater, GitHub, and Amazon ECR so new container images flow to the cluster through GitOps without manual deployment steps.
Hardware-backed TLS certificates with cert-manager and yubihsm 2
Charles Sullivan
This tutorial teaches how to build a cert-manager external issuer that uses a YubiHSM 2 to sign TLS certificates via Go's crypto.Signer interface.
Mastering KEDA on GKE: A Deep Dive into Event-Driven Autoscaling
Saeed Anwar Ansari
This tutorial explains how to use KEDA on GKE to autoscale workloads based on event-driven signals rather than just CPU or memory.