Daily Kubernetes news, events, jobs, podcast and more

Spotlight

What Happens When You Run Java at Scale on Kubernetes

Michael Preston

This article explains the challenges of running Java at scale on Kubernetes, covering JVM memory management with container limits, heap sizing with MaxRAMPercentage, CPU throttling, and garbage collector selection for containers.

A tale of expired IAM credentials
Fabián Sellés Rosa
This case study shows how upgrading to Kubernetes 1.34 caused KIAM pods to fail due to service account token expiration changes, revealing that legacy clients using long-lived tokens now expire after 24 hours instead of 90 days.
From Minutes to Seconds: How I Eliminated Kubernetes Image Pull Delays
Yaron Yadid
This article describes building an Image Preload Operator that reduces Kubernetes pod startup times from minutes to seconds by intelligently preloading container images using a single DaemonSet with CRI-agnostic image pulling.
Deep Dive: The Linkerd Destination Service
Beza
This article explains how Linkerd's destination service works as the central routing and policy authority, using event-driven architecture with Kubernetes Informers to provide service discovery, policy distribution, and Layer 7 configuration to proxies.

Tools and utilities

Infralens: eBPF observability
InfraLens is a zero-instrumentation observability tool that uses eBPF to automatically discover and visualize service-to-service communication in Kubernetes clusters without requiring code changes or sidecars.
KubeAttention
KubeAttention is a machine learning-powered Kubernetes scheduler plugin that uses eBPF telemetry to detect noisy neighbor interference and place latency-sensitive workloads on optimal nodes.
K8up: Kubernetes backup operator
K8up is a Kubernetes Operator that helps you:
OpenEBS
OpenEBS is a modern Block-Mode storage platform, a Hyper-Converged Software Storage System, and a virtual NVMe-oF SAN (vSAN) Fabric that is natively integrated into Kubernetes' core.
AgentDiscover Scanner: AI agent detection
AgentDiscover Scanner detects autonomous AI agents and Shadow AI in codebases using static analysis for Python and JavaScript, network monitoring for active LLM traffic, and Kubernetes runtime detection via Cilium Tetragon eBPF.

More projects →

Events starting soon

Zero Trust in Kubernetes: Securing Cloud Native Workloads
March 28, 2026
- Location: Hyderabad, IN
- This is a free event.
Scaling Kubernetes Workloads for Hybrid Cloud Environments
March 28, 2026
- Location: Pune, IN
- This is a free event.
Scaling AI on Kubernetes: From Demo to Production
March 28, 2026
- This is a virtual event
- This event requires an entrance fee
Docker from Scratch with Python
March 28, 2026
- Location: Cali, CO and virtual
- This is a free event.
Zero to Production in Kubernetes
March 31, 2026
- This is a virtual event
- This is a free event.
My vibe-coded Kubecon agenda optimizer and how I actually experienced Kubecon
March 31, 2026
- Location: Umeå, SE
- This is a free event.

Discover more events onn Kube Events →

GPU Containers as a Service

Running GPU workloads on Kubernetes sounds straightforward until you need to isolate multiple tenants on the same server. The moment you virtualize GPUs for security, you lose access to NVIDIA kernel drivers — and almost every tool in the ecosystem assumes those drivers exist.

Landon Clipp built a GPU-based Containers as a Service platform from scratch, solving each isolation layer — from kernel separation with Kata Containers + QEMU to NVLink fabric partitioning to network policies with Cilium/eBPF — and shares exactly what broke along the way.

In this interview:

Why standard NVIDIA tooling (GPU Operator) fails in multi-tenant setups, and how to use CDI with PCI topology scanning to make GPUs visible to Kubernetes without kernel drivers
How to partition the NVLink fabric between tenants using a trusted service VM running Fabric Manager, and why the physical PCIe wiring differs between Supermicro HGX and NVIDIA DGX systems
Why gVisor doesn't work for GPU workloads — NVIDIA's unstable ioctl ABI means Google has to update gVisor for every driver release, and they only support a handful of GPUs
What caused 8-GPU VMs to take 30+ minutes to boot, and the specific fixes (IOMMUFD, cold plugging, kernel upgrades) that brought it down to minutes
How Cilium network policies enforce tenant isolation at the Kubernetes identity level instead of fragile IP-based rules

Where Containers as a Service fits best: inference workloads where AI teams want to ship an OCI image without managing infrastructure or signing multi-million dollar cluster contracts.

Learn from production

We built awesome internal CI/CD with ArgoCD and Workflows.
Rob Sherling
This case study shows how EMC Healthcare built an on-premise CI/CD pipeline using K3s, ArgoCD, and Argo Workflows to automate testing and deployments with preview environments.
GPU Starvation in Kubernetes: How Dynamic MIG Partitioning Saved Our GPU Budget
Sphoorthi Charan Nayakudugari
This case study explains how the authors used dynamic MIG partitioning to split large GPUs like NVIDIA A100/H100 into multiple isolated slices, letting many small jobs share GPU efficiently.
We Cut Our Kubernetes Pods by 60% and Doubled Traffic Capacity
Farid Guluzade
This case study shows how reducing JVM MaxRAMPercentage, cutting the Hikari connection pool from 50 to 20, and implementing aggressive HPA scale-up (0s stabilization, 4 pods/min) doubled traffic capacity while cutting baseline pods from 26 to 10.
From Chaos to 99.9% Uptime: Rebuilding a Kubernetes Platform for GPU Workloads
Mateen Ali Anjum
This case study describes rebuilding a fragile Kubernetes infrastructure into a production-grade platform for GPU-based ML workloads, improving deployment frequency from weekly to 10+ times daily.

More case studies →

Matching jobs

- Data Engineer with ILLUIN Technology
- Salary: $90K to $412.61K a year
- Location: based in the office in Paris La Défense, FR
- Tech stack: Kubernetes, On-premise, Docker, SQL, Java, Kotlin, Python, Scala, Snowflake, Terraform
- Data Engineer with XBOW
- Salary: $72K to $188.18K a year
- Location: remote from
- Tech stack: Kubernetes, C#, Go, Java, Javascript, Python, Shell, SQL, Typescript, PostgreSQL
- DevOps Engineer with Cosine
- Salary: US$49.5K to US$275K a year
- Location: based in the office in London, GB
- Tech stack: Kubernetes, AWS, On-premise, Helm, Docker, Go, Javascript, Python, Typescript, Redis
- DevOps Engineer with Meritis
- Salary: $99.9K to $275K a year
- Location: based in the office in Sophia Antipolis, FR
- Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Python, Terraform, GitHub Actions, Jenkins, Ansible
- DevOps Engineer with Septeo
- Salary: $99.9K to $275K a year
- Location: based in the office in Montpellier, FR
- Tech stack: Kubernetes, AWS, Docker, Terraform, Ansible

Discover more Kubernetes jobs on Kube Careers →

Build something

Data Streaming in Practice (Kafka + Flink): Building a Flight Baggage Tracking System
Tobby Kuo
This tutorial teaches how to build an end-to-end real-time baggage tracking system using Kafka for event streaming, Flink for state processing, ClickHouse for analytics, and Grafana for visualization on Kubernetes.
Kubernetes Gateway API on AKS Exposed via Azure Application Gateway
Shanaka Jayasundera
This tutorial shows how to expose Kubernetes Gateway API from AKS through Azure Application Gateway by fixing health probe failures with a dedicated HTTPRoute and connection timeouts using externalTrafficPolicy Local for Azure DSR.
Automating Pod Disruption Budgets with Kyverno
Ahmad Asmar
This tutorial shows how to use Kyverno policy engine to generate Pod Disruption Budgets for Kubernetes deployments with multiple replicas, preventing downtime during Karpenter node consolidation through intelligent API lookups and label matching.
Next-Gen Datacenter Networking: Unifying Arista Fabric with Cilium CNI
Jean Baptiste Lapeyre
This article explains how to integrate Arista datacenter fabric with Cilium CNI by building a spine-leaf architecture with an ISIS underlay and a BGP EVPN overlay.