Learn Kubernetes Weekly issue 184 · 20 May 2026
Hunting a 4GB Native Memory Leak, Ingress NGINX Surprises Before You Migrate, ctx_ for DevOps, Migrating to Istio, PostgreSQL on Kubernetes
This newsletter is brought to you by WeAreDevelopers World Congress — The World’s Largest Event for Developers, AI Builders & Tech Leaders
Hi!
⭐️ We've got a discount for WeAreDevelopers World Congress.
This is the world's largest developer conference taking place 8-10 July 2026 · Berlin, Germany.
Covering AI, Cloud Native, DevOps, Frontend, and Security, with workshops and a hackathon.
Use code LEARNKUBE10 for 10% off your ticket.
Articles
Three Weeks in the Trenches: Hunting a 4GB Native Memory Leak That .NET Couldn’t See
medium.com
This case study shows how a team traced repeated pod OOM kills in ASP.NET Core to native memory growth from zombie SignalR connections, glibc fragmentation, and kernel socket buffers.
Before You Migrate: Five Surprising Ingress-NGINX Behaviors You Need to Know
kubernetes.io
This article explains five Ingress-NGINX behaviors that can break migrations, including path-matching differences, regex quirks, rewrite behavior, and annotation mismatches when migrating to another ingress solution.
Why I built ctx_: the context switcher that actually gets DevOps work
dev.to
This article introduces ctx_, a CLI tool that switches an entire DevOps working context at once, including Kubernetes context, cloud credentials, environment variables, VPN, SSH tunnels, secrets, and browser profile.
Migrating Ingress NGINX Controller to Istio in Kubernetes environment
medium.com
This article covers an ingress-nginx to Istio migration, architectural decisions, the RE2 vs PCRE regex incompatibility gotcha, URL rewrite differences, resource overhead comparison between sidecar and ambient mode, and a phased migration strategy.
Running PostgreSQL on Kubernetes: Operators, Storage and Production Guide
dev.to
This article covers running PostgreSQL on Kubernetes in production — comparing Zalando, Crunchy and CloudNativePG operators, storage class decisions, backup strategies, connection pooling, and a take on when Kubernetes is overkill for databases.
Building Secure GitOps Pipelines: Integrating External Secrets Operator with ArgoCD on EKS
medium.com
This tutorial shows how to secure an ArgoCD based EKS GitOps workflow with External Secrets Operator, IRSA, and AWS SSM Parameter Store so secrets stay out of Git and sync safely into Kubernetes.
The World’s Largest Event for Developers, AI Builders & Tech Leaders
15,000 developers. 500+ speakers. One place.
Werner Vogels, Thomas Dohmke, Garry Kasparov and more on stage. Three days of talks, workshops, and live coding in Berlin.
Tutorials
medium.com
This tutorial teaches how to deploy Crossview on Kubernetes with Helm and secure it for enterprise use with session auth, SSO, proxy header auth, RBAC, TLS, and high-availability settings.
Handling Leaked Secrets and Credentials in Version Control Repositories
medium.com
This tutorial explains how to prevent, detect, and clean up leaked secrets in Git repositories using .env files, Kubernetes Secrets, Gitleaks, GitGuardian, and git-filter-repo.
Running Production Minded Kubernetes on a Raspberry Pi
medium.com
This tutorial shows how to run a small, security-focused k3s cluster on a Raspberry Pi inside a normal home network with tight hardware and networking limits.
The Complete OpenSSL & TLS Debugging Guide: From Root CA to Kubernetes
medium.com
This tutorial explains TLS and certificate debugging from root CA basics to Kubernetes secrets, with OpenSSL and curl commands for inspecting certs, validating handshakes, and fixing common production errors.
Forced platform migrations are usually treated as something to survive. At Scout24, a mandatory OS migration became an opportunity to rethink Kubernetes autoscaling, node provisioning, and infrastructure efficiency.
John Ford explains how Scout24 moved its EKS-based Infinity platform from a polling autoscaler and over-provisioned capacity to Karpenter and Bottlerocket. The result was faster node startup, a safer migration path, and about a 30% infrastructure reduction without major downtime.
In this interview:
- Why two-minute node provisioning forced a 25% capacity buffer
- How Karpenter made the Bottlerocket migration safer
- What broke around EC2 metadata, AWS SDKs, and cgroups
- How the new foundation enables Spot, ARM, and GPU workloads
Kubernetes jobs
System Administrator with Verisign
Salary: US$153K to US$246.4K a year
Location: based in the office in Villars-sur-Glâne, FR, CH
Tech stack: Kubernetes, Kubernetes, EKS, AKS, GKE, Docker, On-premise, alerting, monitoring, logging
Software Engineer with Believe
Salary: $117K to $275K a year
Location: based in the office in Paris, FR
Tech stack: Kubernetes, Kubernetes, Docker, GCP, ArgoCD, PostgreSQL, NoSQL, MySQL, AI tools, continuous deployment
Software Engineer with Twilio
Salary: $47.97K to $264K a year
Location: remote from
Tech stack: Kubernetes, Kubernetes, AWS, Docker, GitHub, build/deploy systems, authentication, IAM, AWS IAM, Authorization
Product Owner with TripArc
Salary: $100K a year
Location: based in the office (and remote from home) in Toronto, CA
Tech stack: Kubernetes, Kubernetes, AKS, Azure, CI/CD, CI/CD pipelines, MongoDB, NServiceBus, AI tools, Cursor
Platform Engineer with Delivery Hero
Salary: $47.97K to $266.2K a year
Location: based in the office in Barcelona, ES
Tech stack: Kubernetes, Kubernetes, AWS EC2, EKS, AWS, observability, DNS, TLS, S3, EC2
Discover more Kubernetes jobs on Kube Careers →
Code & tools
Crust-Gather – kubectl Cluster Snapshot Plugin
github.com/crust-gather
Crust-Gather is a kubectl plugin for collecting Kubernetes cluster state and exposing it through an API server.
github.com/philippemerle
KubeDiagrams is a tool that automatically generates visual architecture diagrams from Kubernetes manifests, Helm charts, and live clusters.
It supports 47+ resource types, customizable clustering by namespace and labels, and can handle custom resources.
github.com/mpiorowski
k10s is a terminal dashboard for watching multiple Kubernetes clusters at once, with side-by-side views, health signals, warnings, and recent logs in one screen.
github.com/clowdhaus
eksup analyzes your EKS cluster and generates a step-by-step upgrade playbook, flagging deprecated APIs, add-on version mismatches, and node group issues before you upgrade.
github.com/okwilkins
H8s is a home infrastructure project combining Kubernetes with Talos OS security, running on 2 N100 mini PCs with GitOps deployment via ArgoCD.
Other interesting projects:
Upcoming Kubernetes events
May
21
Kubernetes Community Days Czech & Slovak - Prague 2026
In-person conference organized by KCD Czech & Slovak.
Location: Bratislava, SK
This event requires an entrance fee
May
21
In-person conference organized by Devopsdays Geneva.
Location: Geneva, CH
This event requires an entrance fee
May
21
In-person conference organized by Codemotion.
Location: Madrid, ES
This event requires an entrance fee
Use PARTNER-DISC-20-KUBE to get 20% off
May
22
In-person conference organized by Cloud Native Amsterdam.
Location: Amsterdam, NL
This event requires an entrance fee
May
22
Observability Summit North America
In-person conference organized by Linux Foundation.
Location: Minneapolis, MN, USA
This event requires an entrance fee
Jun
11
Online workshop organized by LearnKube.
This is a virtual event
This event requires an entrance fee
Kubernetes call for papers
12
days
The Call For Paper is open until 1 June 2026 at UTC. More info →
Location: Bergen, NO
In-person conference organized by CND Norway.
The conference starts on the 27 October 2026.
- Apply here
11
days
KubeCon + CloudNativeCon North America 2026
The Call For Paper is open until 1 June 2026 at UTC. More info →
Location: Los Angeles, CA, USA
In-person conference organized by Linux Foundation.
The conference starts on the 26 October 2026.
- Apply here
32
days
The Call For Paper is open until 22 June 2026 at UTC. More info →
Location: Utrecht, NL
In-person conference organized by Dutch CND.
The conference starts on the 29 October 2026.
- Apply here
26
days
Kubernetes Community Days San Francisco Bay Area 2026
The Call For Paper is open until 15 June 2026 at UTC. More info →
Location: San Francisco, US
In-person conference organized by KCD SF Bay Area.
The conference starts on the 1 September 2026.
- Apply here
46
days
Kubernetes Community Days São Paulo 2026
The Call For Paper is open until 6 July 2026 at UTC. More info →
Location: São Paulo, BR
In-person conference organized by KCD Brasil.
The conference starts on the 26 September 2026.
- Apply here
72
days
ContainerDays & AI Context Singapore
The Call For Paper is open until 31 July 2026 at UTC. More info →
Location: Singapore, SG
In-person conference organized by ContainerDays.
The conference starts on the 28 October 2026.
- Apply here
35
days
Open Source Summit Europe 2026
The Call For Paper is open until 25 June 2026 at UTC. More info →
Location: Prague, CZ
In-person conference organized by Linux Foundation.
The conference starts on the 9 October 2026.
- Apply here
21
days
The Call For Paper is open until 10 June 2026 at UTC. More info →
Location: Dubai, AE
In-person conference organized by Experts Live.
The conference starts on the 12 November 2026.
- Apply here
18
days
The Call For Paper is open until 7 June 2026 at UTC. More info →
Location: Mechelen, BE
In-person conference organized by Belgium Microsoft Azure User Group.
The conference starts on the 11 December 2026.
- Apply here
That's all for this week!
See you next week.
— Gulcan