Daily Kubernetes news, events, jobs, podcast and more

Spotlight

Building a Production-Grade Private EKS Cluster with OpenVPN, Prometheus & Grafana

Asmaa Elalfy

This tutorial shows how to build a private EKS cluster with zero public API exposure using Terraform.

It also covers self-hosted OpenVPN as a VPN gateway, NAT masquerade iptables setup, kube-prometheus-stack via internal load balancer, and Route 53.

Enforcing policies and governance for Kubernetes workloads using GateKeeper
Laxman Patel
This article explains how to use Gatekeeper to enforce in-cluster admission policies, such as rejecting :latest images, mandating labels, and disallowing privileged workloads.
Automating Penetration Testing with SecureCodeBox on Kubernetes, Kind Clusters Using GitHub Actions
Gyasmine
This tutorial shows how to run OWASP ZAP scans inside GitHub Actions using SecureCodeBox on a Kubernetes kind cluster.
Taming the Storm: Building Groww’s Internal Chaos Engineering Platform
Groww Engineering Team
This case study explains how Groww built an internal chaos engineering platform on Kubernetes to run controlled failure drills like network faults, dependency outages, and traffic replay before real incidents hit production.

Tools and utilities

Kroc: Kubernetes Reactive Object Creator
Kroc is an educational Kubernetes Operator built with Go and kubebuilder that watches arbitrary resources and reactively creates derived objects using Go templating.
Kube Binpacking Exporter (KBE)
Kube Binpacking Exporter exposes Prometheus metrics that show how efficiently your cluster packs requested CPU and memory across nodes, groups, and DaemonSet overhead so you can measure fragmentation over time.
Kubedock for Running Docker-Based Tests on Kubernetes
Kubedock lets you run Docker API based test workloads on Kubernetes without Docker-in-Docker, which makes it useful for Testcontainers, CI pipelines, and ephemeral test environments.
Zarf: airgapped installation
Zarf is a tool that simplifies software deployment to Kubernetes clusters in airgapped or disconnected environments.
Kogaro – Kubernetes Configuration Hygiene Agent
Kogaro continuously validates Kubernetes config with 60+ checks across reference, resource, security, image, and network domains, catching silent failures before they impact production.

More projects →

Events starting soon

Kubernetes Community Days Kuala Lumpur 2026
June 26, 2026
- Location: Kuala Lumpur, MY
- This event requires an entrance fee
- - Use KUBEEVENTS to get 10% off
Building Agentic Systems on AWS EKS
June 28, 2026
- Location: Rajkot, IN
- This is a free event.
Explore Amazon EKS through the lens of agentic platform engineering
June 28, 2026
- Location: Melbourne, AU
- This is a free event.
Navigating Kubernetes Policies with Kyverno
June 29, 2026
- Location: Barcelona, ES
- This is a free event.
Cloud Native Summit Munich 2026
June 30, 2026
- Location: Munich, DE
- This event requires an entrance fee
AI Agents for the Enterprise
June 30, 2026
- This is a virtual event
- This is a free event.

Discover more events onn Kube Events →

Learn from production

Investigating and fixing "stoppodsandbox from runtime service failed" kubelet errors
In this blog post, the author tracks down persistent sandbox-cleanup errors in a Kubernetes cluster, finds that zero-length CNI cache files cause the problem, and shows how manually deleting those files cleared the error.
Migrating legacy PHP monolith apps on Drupal 8 to Kubernetes
Alexey Demyanov
This case study shows how Palark migrated high-traffic Drupal 8 monoliths to Kubernetes to improve resilience, autoscaling, deployment automation, and DDoS handling while reducing infrastructure waste.
How we found 7 TiB of memory just sitting around
This blog post tells how the Render team:
- tracked down Kubernetes memory waste caused by many daemonset namespace watches,
- fixed config issues,
- and freed over 7 TiB of memory across clusters by reducing unnecessary listwatch overhead.
Tracing large job failures to serial console bottlenecks from oom events
Jack Lindamood
This case study shows how OOM Killer terminated a critical network daemon on Kubernetes nodes, causing a network outage.
It covers debugging via serial console and implementing memory reservations to prevent system-critical process termination.

More case studies →

Matching jobs

- Data Engineer with IDnow
- Salary: $88.2K to $220.22K a year
- Location: based in the office in Rennes, FR
- Tech stack: Kubernetes, Helm, ArgoCD, Docker, Python, Shell, SQL, PostgreSQL, Ceph, Ansible
- DevOps Engineer with American Institutes for Research
- Salary: $149K to $176K a year
- Location: based in the office (and remote from home) in Crystal City, VA, USA
- Tech stack: Kubernetes, Azure, Powershell, Azure DevOps
- DevOps Engineer with IDnow
- Salary: $120.15K to $241.68K a year
- Location: based in the office in Rennes, FR
- Tech stack: Kubernetes, AWS, On-premise, Terraform, Ansible
- DevSecOps Engineer with CHAOS Industries
- Salary: $140K to $220K a year
- Location: based in the office in El Segundo, CA, USA
- Tech stack: Kubernetes, Azure, On-premise, Docker, C++, Go, Groovy, Java, Python, Rust
- DevSecOps Engineer with Tieto
- Salary: $30 to $242K a year
- Location: based in the office in Porto, PT
- Tech stack: Kubernetes, Docker, Go, Java, Python

Discover more Kubernetes jobs on Kube Careers →

Build something

Securing Kubernetes Microservices with Istio: mTLS, Gateways, and the Kubernetes Gateway API
Matthieu Vlad
This guide walks through deploying Istio via Terraform and Helm to secure service-to-service and external communication with mTLS, automatic sidecar injection, and encrypted ingress via Istio Gateway.
Deploy production generative AI at the edge using Amazon EKS Hybrid Nodes with NVIDIA DGX
Sheng Chen is a Sr. Specialist Solutions Architect at AWS Australia, bringing over 20 years of experience in IT infrastructure, cloud architecture, and multi-cloud networking. In his current role, Sheng helps customers accelerate cloud migrations and infrastructure modernization by leveraging cloud-native technologies. He specializes in Amazon EKS, AWS hybrid cloud services, platform engineering and AI infrastructure.
This tutorial shows how to run production generative AI at the edge by attaching on-prem NVIDIA DGX systems to an Amazon EKS control plane with hybrid nodes, GPU Operator, and NVIDIA NIM.
Deploying OpenClaw on Kubernetes with Helm
Serhan Ekici
This tutorial shows how to deploy OpenClaw on Kubernetes with a Helm chart and ArgoCD, using persistent storage, config modes, secrets handling, and network policies to reduce the blast radius of an AI agent.
Extending EKS with Hybrid Nodes: IAM Roles Anywhere and HashiCorp Vault
This tutorial teaches how to extend EKS with hybrid nodes using IAM Roles Anywhere and HashiCorp Vault for secure authentication of on-premises or edge workloads.