NVIDIA releasedGrove, a Kubernetes API baked intoDynamo, to wrangle the chaos of modern AI inference. It pulls apart your big, messy model into clean, discrete chunks - prefill, decode, routing - and runs them like a single, orchestrated act. The trick?Custom hierarchical resources. They let Grove h.. read more  

The Cloud Native Computing Foundation launched the Certified Kubernetes AI Conformance Program to set standards for AI workloads on Kubernetes, ensuring reliability and consistency.

Microsoft Defender for Cloud enhances Kubernetes security with new features, updates container vulnerability re-scan policies, and expands support for Jfrog Artifactory and Docker Hub.

A new stealth rootkit calledLinkProjust surfaced, taking aim at AWS-hosted Linux boxes. It blends two customeBPF programsfor deep concealment and remote activation via magic packets. The path in?CVE-2024-23897—an RCE on a public Jenkins server. From there, attackers slipped into Amazon EKS clusters,.. read more  

Learn how to manage secrets with the External Secrets Operator and plug it into Argo CD to power your Internal Developer Platform without manual management, enabling self-service secrets management and secure connections between workload clusters and the control plane. With a chain of trust between .. read more  

Buildkite just added a major revamp of its Kubernetes Agent Stack. Highlights:REST-based config,leaner K8s objects, andhardened security defaults. It handlestens of thousands of concurrent jobswithout breaking a sweat. Shared environment vars cut down pod config noise. Error messages come with full .. read more  

Airbnb runs distributed databases across multiple Kubernetes clusters - each tied to its own AWS Availability Zone. That setup isolates failures down to individual pods and keeps the whole system highly available. They built a custom Kubernetes operator and leaned on EBS volumes with PVCs to smooth .. read more  

Azure Developer CLI v1.20.0 leveled up Container Apps. Build and push are now split from deploy, so you can finally "build once, deploy everywhere" and mean it. It adds layered infrastructure support, lets you share anAzure Container Registryacross environments, and handles resource dependency seque.. read more  

Tools likeOPA Gatekeeper,Kyverno, and custom webhooks slam the brakes on sketchy workloadsbeforethey ever spin up. These controllers aren’t just gatekeepers - they’re enforcers. They check pod configs, block unverified images, and apply live, scoped policies like tenant-awarenetwork isolationandreso.. read more  

Kubernetes releases Gateway API 1.4.0, enhancing service networking with new features like secure TLS connections and improved configuration options.