Learn Kubernetes Weekly issue 116 · 29 Jan 2025
Journey through unexpected heap issues, optimize for large Docker images, autoscaling using metrics based on app workflows, seccomp
This newsletter is brought to you by StormForge — the only JVM workload rightsizing solution. Sign up for the beta.
Articles
Node.js 20 upgrade: a journey through unexpected heap issues with Kubernetes
deezer.io
In this article, you'll learn about the unexpected HEAP issues that arose during a Node.js 18 to Node.js 20 upgrade in a Kubernetes environment, and how to troubleshoot and resolve performance problems related to memory and CPU reservations.
Why flexibility matters when setting Kubernetes resource limits
ku.bz
Setting CPU and memory limits is a contentious topic, and the internet is full of opinions.
So what should you do? The short answer is: It depends.
Here are a few scenarios to help you decide if and how you should set limits.
sponsored
How to optimize Kubernetes for large Docker images
hackernoon.com
In this article, you'll learn how to optimize Kubernetes for large Docker images, reducing cold start times and disk pressure issues, and improving overall deployment efficiency with a warm-up process for Kubernetes nodes.
How to optimize autoscaling in Kubernetes using metrics based on application workflows
medium.com
Discover how to move beyond traditional Horizontal Pod Autoscaler (HPA) and Vertical Pod Autoscaler (VPA) methods and leverage tools like KEDA to scale your applications more efficiently and reduce costs.
Container internals series: seccomp
cloudchirp.medium.com
In this article, you'll learn how to create and manage Seccomp profiles using Golang to control system calls and enhance security in containerized environments, reducing potential vulnerabilities and attack surfaces.
perfectscale.io
In this article, you will learn how to optimize Kubernetes node utilization using pod priority and preemption, ensuring critical applications receive necessary resources.
Articles worth checking out:
Tired of your JVM being a memory hog?
StormForge
Optimize heap size, reduce OOMs, and increase Kubernetes cluster utilization with StormForge's Java Workload Optimization.
Tutorials
Advanced autoscaling in Kubernetes with KEDA
ku.bz
KEDA builds on the HPA to provide significantly more flexibility, easy-to-use options for various metrics out of the box, and the important ability to scale applications to zero.
For this tutorial, you will use a combination of ScaledObjects, standard Kubernetes workloads, and ScalingJobs.
sponsored
Exploring the gateway API with Istio ASM extension on AKS
medium.com
In this article, you'll learn how to deploy and configure the Gateway API on Azure Kubernetes Service with the Istio ASM extension, enabling advanced traffic management capabilities for your cloud-native applications.
Migrating CI/CD from Jenkins to Argo
dev.to
In this 2-part article, you'll learn how to migrate your CI/CD pipelines from Jenkins to Argo Workflows, overcome scalability challenges, and leverage the benefits of dynamic resource provisioning and parallelism.
Karmada: deep dive into managing multiple AKS clusters
dev.to
In this article, you'll learn how to master multi-cluster management with Karmada, a tool for deploying and managing applications across multiple Kubernetes clusters and discover the best centralized logging, monitoring, and automation strategies.
Planning a k3s multi-cluster network with L2 and BGP on Unifi UDM
medium.com
In this article, you'll learn how to build a K3s multi-cluster network using Cilium and BGP on a Unifi UDM.
More tutorials:
Platform Engineer Artem Lajko breaks down observability into three distinct layers and explains how tools like Prometheus, Grafana, and Falco serve different purposes. He also shares practical insights on implementing the right level of monitoring based on team requirements and capabilities.
You will learn:
- How to implement the three-layer model (external, internal, and OS-level) and why each layer serves different stakeholders
- How to choose and scale observability tools using a label-based approach (low, medium, high)
- How to manage observability costs by collecting only relevant metrics and logs
Kubernetes jobs
Site Reliability Engineer with Movable Ink
Salary: $190K to $210K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, Go, Shell, Python, Javascript, Ruby, Terraform, Chef, Prometheus
DevOps Engineer with hive.co
Salary: CA$123.6K to CA$187.9K a year
Location: remote from Canada
Tech stack: Kubernetes, AWS, Docker, Python, SQL, Javascript, Typescript, Mongo, Redis, MySQL
Engineering Manager with Lambda
Salary: $167.2K to $246K a year
Location: based in the office (and remote from home) in San Francisco, CA, USA
Tech stack: Kubernetes, AWS, Bare-metal, Go, Python
Technical writer with Second Front Systems
Salary: $166K to $177K a year
Location: remote from the United States
Tech stack: Kubernetes, Gitlab
Software Engineer with PointClickCare
Salary: $139.5K to $150K a year
Location: based in the office (and remote from home) in Mississauga, ON, CA
Tech stack: Kubernetes, AWS, Azure, Docker, Java, Jenkins
Discover more Kubernetes jobs on Kube Careers →
Code & tools
gokatalyst.io
Katalyst is a QoS-based resource management system for workload colocation on kubernetes.
It defines and implements QoS classes that reflect the QoS requirements of various types of workloads, including microservices, batch jobs, etc.
Trivy-operator: Kubernetes-native security toolkit
github.com/aquasecurity
The Trivy Operator leverages Trivy to continuously scan your Kubernetes cluster for security issues.
The scans are summarised in security reports as Kubernetes Custom Resource Definitions, which become accessible through the Kubernetes API.
github.com/lobuhi
AWRBACS is a tool that audits CRUD permissions in Kubernetes' RBAC, allowing users to enumerate and verify the permissions of users and service accounts.
github.com/virtual-kubelet
Virtual Kubelet is an open-source Kubernetes kubelet implementation that masquerades as a kubelet to connect Kubernetes to other APIs.
github.com/alrokayan
kubecsv is a tool that** deploys a set of apps, including their storage and network, from a single comma-separated values (csv) file** using TrueCharts helm repo.
Other interesting projects:
Upcoming Kubernetes events
Jan
31
Cloud Technology Townhall Tallinn 2025
In-person conference organized by Cloud Technology Townhall Tallinn.
Location: Tallinn, EE
This event requires an entrance fee
Use Kube to get 20% discount off
Feb
5
In-person conference organized by CfgMgmtCamp.
Location: Ghent, BE
This event requires an entrance fee
Feb
2
In-person conference organized by FOSDEM.
Location: Brussels, BE
This event requires an entrance fee
Jan
30
Enforcing workload isolation in multi-tenant EKS cluster
Online workshop organized by Tigera.
This is a virtual event
This is a free event.
Jan
29
Defeat complexity with use-case-optimized Kubernetes platforms
Online webinar organized by Mirantis.
This is a virtual event
This is a free event.
Kubernetes call for papers
expired
The Call For Paper was open until 31 January 2025 at UTC. More info →
Location: Bucharest, RO
In-person conference organized by Cloud Native Romania.
The conference starts on the 6 May 2025.
- Apply here
expired
KubeCon + CloudNativeCon Japan 2025
The Call For Paper was open until 2 February 2025 at UTC. More info →
Location: Tokyo, JP
In-person conference organized by Linux Foundation.
The conference starts on the 17 June 2025.
- Apply here
expired
KubeCon + CloudNativeCon China 2025
The Call For Paper was open until 2 February 2025 at UTC. More info →
Location: Hong Kong, HK
In-person conference organized by Linux Foundation.
The conference starts on the 11 June 2025.
- Apply here
expired
Kubernetes Community Days Costa Rica 2025
The Call For Paper was open until 10 February 2025 at UTC. More info →
Location: Heredia, CR
In-person conference organized by KCD Costa Rica.
The conference starts on the 3 May 2025.
- Apply here
expired
Kubernetes Community Days Texas Austin 2025
The Call For Paper was open until 13 February 2025 at UTC. More info →
Location: Austin, TX, USA
In-person conference organized by KCD Texas.
The conference starts on the 15 May 2025.
- Apply here
expired
The Call For Paper was open until 31 March 2025 at UTC. More info →
Location: Hamburg, DE
In-person conference organized by Looevent.
The conference starts on the 9 September 2025.
- Apply here
expired
Kubernetes Community Days Helsinki 2025
The Call For Paper was open until 8 February 2025 at UTC. More info →
Location: Helsinki, FI
In-person conference organized by KCD Helsinki.
The conference starts on the 6 May 2025.
- Apply here
expired
Kubernetes Community Days Beijing 2025
The Call For Paper was open until 5 February 2025 at UTC. More info →
Location: Beijing, CN
In-person conference organized by KCD Beijing.
The conference starts on the 15 March 2025.
- Apply here
expired
Kubernetes Community Days Czech & Slovak 2025
The Call For Paper was open until 15 March 2025 at UTC. More info →
Location: Prague, CZ
In-person conference organized by KCD Czech & Slovak.
The conference starts on the 5 June 2025.
- Apply here
Until next time!
— Dan