Kubernetes Platform & Architecture

Spotlight

Migrating Ingress NGINX Controller to Istio in Kubernetes environment

Bharat Kalra

This article covers an ingress-nginx to Istio migration, architectural decisions, the RE2 vs PCRE regex incompatibility gotcha, URL rewrite differences, resource overhead comparison between sidecar and ambient mode, and a phased migration strategy.

Building Secure GitOps Pipelines: Integrating External Secrets Operator with ArgoCD on EKS
Josh Woolbright
This tutorial shows how to secure an ArgoCD based EKS GitOps workflow with External Secrets Operator, IRSA, and AWS SSM Parameter Store so secrets stay out of Git and sync safely into Kubernetes.
Kubernetes Gateway API on EKS Exposed via ALB
Shanaka Jayasundera
This tutorial shows how to set up Kubernetes Gateway API on EKS using Istio Ambient Mesh exposed through AWS ALB, with Terraform, ArgoCD, and a layered architecture separating infra from app deployment.
Freezing Spark Drivers to Zero Resources and Waking Them in 300 Milliseconds
rammi-dev
This article explains how Spark Connect, CRIU, and ZeroPod can freeze idle Spark drivers to near-zero resources and restore full session state in about 300 milliseconds on Kubernetes.

Tools and utilities

k8sgpt: Kubernetes analyzer
K8sgpt is a tool that scans Kubernetes clusters, diagnoses, and triages issues in simple English.
KubeDiagrams
KubeDiagrams is a tool that automatically generates visual architecture diagrams from Kubernetes manifests, Helm charts, and live clusters.
Nelm: Helm replacement
Nelm is meant to be a direct replacement for Helm 3, providing first-class Helm chart support yet improving on what Helm 3 offers.
topolvm: capacity-aware CSI
TopoLVM is a CSI plugin using LVM for Kubernetes.
Ingress NGINX Migration
Official Traefik Labs CLI:

More projects →

Events starting soon

Advanced Kubernetes course (London)
May 18, 2026
- Location: London, UK
- This event requires an entrance fee
Advanced Kubernetes course (Boston)
May 18, 2026
- Location: Boston, MA, USA
- This event requires an entrance fee
Cyber Security & Cloud Congress
May 18, 2026
- Location: San Francisco, CA, USA
- This event requires an entrance fee
CloudLand
May 19, 2026
- Location: Soltau, DE
- This event requires an entrance fee
Decentralized vs Centralized Platform Abstractions: A Journey from Helm to Crossplane
May 19, 2026
- Location: Aarhus, DK
- This is a free event.
The Kubernetes Rightsizing Trust Gap: A Practitioner's Path Forward
May 19, 2026
- This is a virtual event
- This is a free event.

Discover more events onn Kube Events →

Learn from production

Our Kubernetes Cluster Was Costing $14,850/Month. We Moved to Fly.io for $680.
Aditya Suryawanshi
This is a war story about a 3-person startup that replaced a $14,850/month over-engineered Kubernetes setup on AWS with Fly.io for $680, cutting P99 latency from 320ms to 180ms and deploy time from 8 minutes to 45 seconds.
Two Production Incidents That Taught Me More Than Any Course
Ejiroghene Laurel Dafe
This case study shows how one engineer resolved two real Kubernetes production incidents involving an overly aggressive Ingress rate limit and Istio breaking non-HTTP socket traffic.
In-place PVC re-binding: zero-downtime disk migration on Kubernetes
Maxim Nazarenko
This case study explains how to migrate bound Kubernetes volumes from deprecated in-tree Azure Disk provisioning to CSI with in-place PVC re-binding, minimal restarts, and no data loss across production disks.
Simplifying Model Serving with Kubernetes and Ray: Inside DoubleVerify’s ML Platform
DV Engineering
This case study shows how DoubleVerify built a Kubernetes and Ray serving platform to deploy and scale ML models in production.
It also covers RayService wrapped with Helm, fault tolerance with external Redis, and platform gains like 30% lower GPU cost.

More case studies →

Matching jobs

- DevOps Engineer with Epic Kids Inc.
- Salary: $90 to $484K a year
- Location: remote from
- Tech stack: Kubernetes, GCP, Helm, ArgoCD, Docker, Python, Airflow, Terraform, GitHub Actions, Jenkins
- DevOps Engineer with Prime Intellect
- Salary: $150K to $300K a year
- Location: based in the office (and remote from home) in San Francisco, CA, USA
- Tech stack: Kubernetes, GCP, Go, Python, Rust, Typescript, Terraform, Ansible, Grafana, Prometheus
- DevOps Engineer with TMS LLC
- Salary: $85 a day
- Location: remote from
- Tech stack: Kubernetes, Azure, Terraform, Azure DevOps
- DevSecOps Engineer with CHAOS Industries
- Salary: $140K to $220K a year
- Location: based in the office in Hawthorne, CA, USA
- Tech stack: Kubernetes, Azure, On-premise, Docker, C++, Go, Java, Python, Rust, Azure DevOps
- DevSecOps Engineer with PactFi
- Salary: $12.6K to $445.5K a year
- Location: based in the office in New York, NY, USA
- Tech stack: Kubernetes, AWS, Docker, Python, Redis, Pulumi, Terraform, Jenkins

Discover more Kubernetes jobs on Kube Careers →

Build something

Mastering Crossview Deployment: Securing Your Crossplane Dashboard in an Enterprise Kubernetes Environment
Moeid Heidari
This tutorial teaches how to deploy Crossview on Kubernetes with Helm and secure it for enterprise use with session auth, SSO, proxy header auth, RBAC, TLS, and high-availability settings.
Testing Kubernetes Deployments and Operators from Java Without the Usual Boilerplate
David Kornel
This tutorial shows how to test Kubernetes deployments and operators from Java on real clusters without heavy boilerplate by using kubetest4j on top of the Fabric8 client.
CRaC in Production: 88% Faster Spring Boot Startups on Kubernetes
Shawrup K Suter
This tutorial shows how CRaC can cut Spring Boot startup time on Kubernetes from 23 seconds to 2.8 seconds and explains the real production issues around AWS SDK checkpointing and OpenTelemetry.
Stop Opening AWS Tickets: Build a Self-Service Platform with Backstage + Crossplane
Sajosam
This tutorial shows how to build a self-service IDP where developers provision real AWS S3 buckets via a Backstage form, with Crossplane handling AWS API calls through Kubernetes CRDs.