Learn Kubernetes Weekly issue 155 · 29 Oct 2025
Scale Real-Time Video on AWS, 7 K8s Anti-Patterns in Prod, Senior Roles Rule Cloud-Native, Deep Dive into Leases, Smarter Pod Scheduling
This newsletter is brought to you by the YAML games — the only quiz series where knowing Kubernetes might actually work against you.
Heading to KubeCon?
We've been preparing something special:
- YAML Games! Six rounds of 10-minute Kubernetes quizzes across the event (Nov 11-13) - learn something, have fun, meet people at various booths.
- Platform Engineering Challenge Teams of 4 race to build a production K8s IDP in 90 minutes (Nov 10, 12:30 PM) - discover what it really takes to build a platform, compete for Jetson Orin Nano + credits.
If you're going: play YAML Games, sign up for the Challenge, and tell me how it goes!
Articles
Scaling Real-Time Video on AWS: How We Keep WebRTC Latency Below 150ms with Kubernetes Autoscaling
hackernoon.com
This case study describes how they engineered Kubernetes autoscaling, regional routing, and efficient media paths to maintain end-to-end latency under 150 ms for live WebRTC video at scale.
7 Kubernetes Anti-Patterns That Hurt Us in Production (Learn from Our Mistakes)
medium.com
This article shares seven anti-patterns the authors ran into when running Kubernetes in production, such as misuse of liveness probes, overreliance on default settings, brittle YAML, and lack of proper feedback loops.
You’ll Secure a Lead or Principal-Level Cloud-Native Role Before a Junior One!
cloudnativenow.com
This article highlights that in the cloud-native job market only around 3-4% of roles are at the Junior level while Senior, Lead and Principal roles dominate, and it explores what this means for career seekers.
Deep Dive into Kubernetes Leases: Robust Leader Election for DaemonSets (with Go Examples)
msalinas92.medium.com
This article explains how Kubernetes Lease API enables safe leader election for workloads like DaemonSets.
It walks through implementation details, trade-offs, and includes Go code examples using client-go.
Kubernetes pod scheduling: balancing cost and resilience
cast.ai
This article explores how scheduling policies can optimize resource usage while preserving fault tolerance.
It covers strategies for using anti-affinity, spread constraints, and affinity weights to balance cost and resilience.
How Kubernetes Pod Priority and Preemption Work
chaitanyakharche.hashnode.dev
This article explains how Kubernetes assigns priority to Pods with PriorityClasses, and how it can evict lower-priority Pods to make room for higher-priority ones when resources are tight.
Articles worth checking out:
Platform Engineering CTF at KubeCon Atlanta
At this KubeCon, can your team build a production-ready Kubernetes IDP in 90 minutes?
Start with an empty cluster. Race to implement namespace provisioning, RBAC, deployment templates, and governance policies. Teams of 4, live leaderboard, real challenges.
Tutorials
Deploying a .NET Weather Forecast App to AKS Using GitHub Actions and Argo CD
medium.com
This tutorial shows how to deploy a .NET weather forecast app to AKS using GitHub Actions to build/push the container and Argo CD to sync & deploy to the cluster.
Canary Deployments with Flagger
dev.to
This tutorial shows how to use Flagger to roll out updates gradually (canary style) in Kubernetes, automating traffic shifts, metric checks, rollbacks, and webhooks.
Andrew Jeffree from SafetyCulture walks through their complete migration of 250+ microservices from a fragile Helm-based setup to GitOps with ArgoCD, all without any downtime. He explains how they replaced YAML configurations with a domain-specific language built in CUE, creating a better developer experience while adding stronger validation and reducing operational pain points.
You will learn:
- Zero-downtime migration techniques using temporary deployments with prune-last sync options to ensure healthy services before removing legacy ones
- How CUE lang improves on YAML by providing schema validation, early error detection, and a cleaner interface for developers
- Human-centric platform engineering approaches that prioritize developer experience and reduce on-call burden through empathy-driven design decisions
Kubernetes jobs
DevOps Engineer with Hazel Health
Salary: $135K to $160K a year
Location: remote from the United States of America
Tech stack: Kubernetes, AWS, Kustomize, Flux, Docker, Shell, Python, SQL, Javascript, Java
DevOps Engineer with Netguru
Salary: PLN 201.6K to PLN 338.4K a year
Location: remote from Europe
Tech stack: Kubernetes, AWS, Azure, GCP, Rancher, Flux, ArgoCD, Docker, Go, Shell
Software Engineer with Anduril
Salary: $191K to $253K a year
Location: based in the office in Bellevue, WA, USA
Tech stack: Kubernetes, Docker, Go, Python, Java, C++, C, C#, Powershell
Software Engineer with LITIT
Salary: $54K to $66K a year
Location: fully remote
Tech stack: Kubernetes, AWS, Helm, ArgoCD, Docker, SQL, Java, PostgreSQL, Kafka, GitHub Actions
DevOps Engineer with Federato
Salary: $190K to $225K a year
Location: remote from the United States of America
Tech stack: Kubernetes, GCP, Helm, ArgoCD, Kafka, Terraform, GitHub Actions, Grafana, Prometheus
Discover more Kubernetes jobs on Kube Careers →
Code & tools
github.com/bitnami-labs
Sealed Secrets provides declarative Kubernetes Secret Management in a secure way.
Since the Sealed Secrets are encrypted, they can be safely stored in a code repository.
github.com/kubernetes
git-sync is a simple command that pulls a git repository into a local directory.
It is a perfect "sidecar" container in Kubernetes - it can periodically pull files down from a repository so that an application can consume them.
kubectx + kubens: Power tools for kubectl
github.com/ahmetb
kubectx is a tool to switch between contexts (clusters) on kubectl faster.
kubens is a tool to switch between Kubernetes namespaces (and configure them for kubectl) easily.
github.com/gianlucam76
K8s cleaner is a controller that identifies, removes, or updates stale/orphaned or unhealthy resources to maintain a clean and efficient Kubernetes cluster.
Smesh: Lightweight Kubernetes-Integrated Sidecar Mesh Without Proxies
github.com/thebsdbox
smesh is a proof-of-concept service mesh for Kubernetes that utilizes eBPF to intercept and redirect pod traffic to a sidecar proxy.
Other interesting projects:
Upcoming Kubernetes events
Nov
4
Kubernetes Community Days Porto 2025
In-person conference organized by KCD Porto.
Location: Porto, PT
This event requires an entrance fee
Use KCDPorto2025_kubecareers10 to get 10% off for the first 10 person
Oct
30
Understanding GPU Resources in Kubernetes
Online webinar organized by vCluster Labs + LearnKube.
This is a virtual event
This is a free event.
Oct
29
In-person meetup organized by Cloud Native Aachen.
Location: Aachen, DE
This is a free event.
Oct
30
Augment Your Kubernetes with AI Agents Using Kagent & High-scale Inference with EKS
In-person meetup organized by Cloud Native Tel Aviv.
Location: Tel Aviv, IL
This is a free event.
Oct
30
Kubernetes Messaging at Scale: Building WhatsApp/SMS Integration for Enterprise CRM
In-person meetup organized by Kubernetes Austin.
Location: Austin, TX, USA
This is a free event.
Kubernetes call for papers
3
days
The Call For Paper is open until 10 November 2025 at UTC. More info →
This is a virtual event
Online conference organized by Cloud Native LATAM.
The conference starts on the 27 November 2025.
- Apply here
expired
The Call For Paper was open until 3 November 2025 at UTC. More info →
Location: Amsterdam, NL
In-person conference organized by Nirmata.
The conference starts on the 23 March 2026.
- Apply here
expired
The Call For Paper was open until 2 November 2025 at UTC. More info →
Location: Los Angeles, CA, USA
In-person conference organized by Devopsdays.
The conference starts on the 7 March 2025.
- Apply here
expired
The Call For Paper was open until 31 October 2025 at UTC. More info →
Location: Porto Alegre, BR
In-person conference organized by Devopsdays.
The conference starts on the 29 November 2025.
- Apply here
Until next time!
— Gulcan