Daily Kubernetes news, events, jobs, podcast and more

Spotlight

How a Supply Chain Attack Made Me Sign Every Container Image I Ship

Samarth

This article shows how to sign every container image using Cosign keyless signing in GitHub Actions and enforce signatures at pod admission with Kyverno, using the chalk/debug npm attack as the real-world motivation.

Why Your KServe InferenceService Won't Become Ready: Four Production Failures and Fixes
Sodiq Jimoh
This article explains four KServe readiness failures on k3d, ArgoCD, Knative, and Kourier, with root causes, terminal output, and working patches for production debugging.
Ansible AWX: Infrastructure Automation on Top of Kubernetes
Btech Engineering
This article explains how a team deployed Ansible AWX on K3s and extended it for OpenStack inventory, dynamic SSH users, execution nodes, custom execution environments, and air-gapped installs.
SRE: Secrets Management in Kubernetes
Gabriel
This article explains Kubernetes secrets management from an SRE angle by comparing:
- Sealed Secrets,
- External Secrets Operator,
- and Vault-based approaches with examples.

Tools and utilities

KubeSolo – Ultra-lightweight Single-Node Kubernetes
KubeSolo is a single-node Kubernetes distribution optimized for edge, IoT and embedded devices.
K8sQuest
K8sQuest is a local Kubernetes learning game with 50 progressive challenges where you fix broken clusters using kubectl with real-time monitoring, progressive hints, and post-mission debriefs running on kind.
Cluster API
Cluster API is a Kubernetes subproject that provides declarative APIs and tooling to provision, upgrade, and operate Kubernetes clusters across infrastructure providers using Kubernetes-style automation patterns.
Kappal
Kappal runs your existing docker-compose.yaml on Kubernetes using familiar commands like up, down, logs, exec.
Kubie – isolated per-shell Kubernetes context and namespace manager
Kubie is a tool that provides an alternative to kubectx, kubens, and the k on prompt modification script, offering context switching, namespace switching, and prompt customization.

More projects →

Events starting soon

Intelligent Node Management with Karpenter in Kubernetes
May 28, 2026
- This is a virtual event
- This is a free event.
Production-Ready Kubernetes: Security, Observability, Cost & Privilege Control
May 28, 2026
- Location: Austin, TX, USA
- This is a free event.
Kubernetes shaping the future of cloud-native AI
May 29, 2026
- Location: New Delhi, IN
- This is a free event.
The Kubernetes Gateway API
May 30, 2026
- Location: Chennai, IN
- This is a free event.
Cloud Native Day Pune 2026
May 31, 2026
- Location: Pune, IN
- This is a free event.
DevOpsCon San Diego 2026
June 1, 2026
- Location: San Diego, CA, USA and virtual
- This event requires an entrance fee

Discover more events onn Kube Events →

Learn from production

Tracing large job failures to serial console bottlenecks from oom events
Jack Lindamood
This case study shows how OOM Killer terminated a critical network daemon on Kubernetes nodes, causing a network outage.
It covers debugging via serial console and implementing memory reservations to prevent system-critical process termination.
Three Weeks in the Trenches: Hunting a 4GB Native Memory Leak That .NET Couldn’t See
Kalyan Josyula
This case study shows how a team traced repeated pod OOM kills in ASP.NET Core to native memory growth from zombie SignalR connections, glibc fragmentation, and kernel socket buffers.
Autoscaling Hid Our LLM Cost Regression (85% → 4% Cache Hit Rate)
Nick Roan
This case study shows how a single RAG chunk size change collapsed vLLM prefix-cache hit rate from 85% to 4%, triggering an 80% GPU replica increase while latency stayed flat.
It also includes the fix: adding a two-phase cache replay gate in CI.
How My Client Hit Linux Kernel Network Limits on AWS EKS
Dat Ton
This case study explains how cURL 65 errors and DNS resolution failures on AWS EKS were caused by Linux kernel network limits being exceeded, resolved by increasing netdev_budget, netdev_budget_usecs, and netdev_max_backlog parameters.

More case studies →

Matching jobs

- DevOps Engineer with MaintainX
- Salary: $117K to $302.17K a year
- Location: remote from
- Tech stack: Kubernetes
- Developer Advocate with MariaDB plc
- Salary: $45K to $382.8K a year
- Location: remote from
- Tech stack: Kubernetes, SQL, Java, Python, Redis, Kafka, Datadog, Grafana, Prometheus, Splunk
- Engineering Manager with MaintainX
- Salary: $58.5K to $473K a year
- Location: based in the office in San Francisco, CA, USA
- Tech stack: Kubernetes
- Software Engineer with Manychat
- Salary: US$9 to US$533.5K a year
- Location: based in the office (and remote from home) in Amsterdam, NL
- Tech stack: Kubernetes, Docker, Python, SQL, Redis, PostgreSQL, Grafana, Prometheus
- Support Engineer with MariaDB plc
- Salary: $45K to $224.4K a year
- Location: remote from
- Tech stack: Kubernetes, Docker, Java, Redis, Cassandra, Kafka

Discover more Kubernetes jobs on Kube Careers →

Build something

Build a Production-Ready vLLM Inference Server on Kubernetes with AMD Instinct GPUs
Ojas Singh
This tutorial teaches how to run a production-ready vLLM inference server on Kubernetes with AMD Instinct GPUs using containerd, the AMD GPU Operator, persistent storage, and MetalLB.
Designing for Failure with CloudNativePG
Dylan Da Costa
This tutorial explains how to design CloudNativePG for production failure by using plugin-based backups, WAL archiving, point-in-time recovery, snapshots, and PgBouncer so recovery is treated as the real operational priority.
Cilium Network Policies: L7 HTTP Filtering with eBPF on Kubernetes
Dilan Dashintha
This tutorial shows how to use Cilium and Hubble to enforce HTTP path based network policies in Kubernetes with eBPF, so you can allow or block specific endpoints without sidecars.
The Complete OpenSSL & TLS Debugging Guide: From Root CA to Kubernetes
Amolpratap Singh
This tutorial explains TLS and certificate debugging from root CA basics to Kubernetes secrets, with OpenSSL and curl commands for inspecting certs, validating handshakes, and fixing common production errors.