Week Ending February 09, 2025

https://lwkd.info/2025/20250212

Developer News

SIG-Etcd is recruiting for another Mentorship Cohort. If you’ve been interested in working on Etcd, or leveling up your skills to become an approver, please apply to be a mentee.

SIG Leads, quick reminder to check your old alpha/beta features to see if they can progress in 1.33, or should maybe be deprecated.

Arty folks, want to design the contributor tshirt for London? Submit your designs by February 18th.

Release Schedule

Next Deadline: Enhancements Freeze, February 13

Enhancements freeze is right around the corner, scheduled for 02:00 UTC Friday 14th February 2025 / 18:00 PST Thursday 13th February 2025. If your KEPs have been opted-in for the release make sure that you’ve fulfilled all the requirements in order to make the cut for enhancements freeze. If you’re expecting the need for an exception, you can talk with your SIG leads and apply for an early exception request.

1.33 alpha 1 is now available.

February patch releases are delayed 1 week to incorporate a golang update.

Featured PRs

129731: SidecarContainers to GA

Sidecar containers feature is finally promoted to GA in v1.33. The SidecarContainers feature gate has been locked to default value and will be removed in v1.36. The original KEP for sidecar containers was first introduced in v1.28. The KEP proposed built-in support for sidecar containers in Kubernetes with the sidecar containers running as restartable initContainers.

128367 FG:InPlacePodVerticalScaling Implement resize for sidecar containers

This PR implements resize for sidecar contianers, with sidecar containers now promoted to GA. Resize of sidecar containers now works the same as resize of regular containers. This PR adds the capability to resize sidecar containers, which are essentially restartable init containers, when in-place pod resizing is enabled. Resize of non-restartable init containers is still not allowed.

Other Merges

Fix for memory leak in kube-proxy occurring in clusters with high volume of UDP workflows

kube-apiserver featuregate ServiceAccountNodeAudienceRestriction to be enabled by default in v1.33

Fix for regression with ServiceAccountNodeAudienceRestriction for azureFile volumes errors

Scheduler queuesort plugins integration tests added

Fix for DRA allocation All mode when there are no devices available for allocation

statusz endpoint added for kube-controller-manager

statusz endpoint added for kube-proxy

Promotions

ControlPlaneKubeletLocalMode to beta

WaitForAllControlPlaneComponents to beta

Deprecated

WatchFromStorageWithoutResourceVersion deprecated

SeparateCacheWatchRPC deprecated

Version Updates

Update publishing-bot rules to use go1.22.10 for active release branches

Kubernetes is now built with Go 1.23.5

via Last Week in Kubernetes Development https://lwkd.info/

February 12, 2025 at 02:00PM

Ep11 - Ask Me Anything About DevOps, Cloud, Kubernetes, Platform Engineering,... w/Scott Rosenberg

There are no restrictions in this AMA session. You can ask anything about DevOps, Cloud, Kubernetes, Platform Engineering, containers, or anything else. We'll have a special guest Scott Rosenberg to help us out.

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

via YouTube https://www.youtube.com/watch?v=3wekCMdzHmA

From Zero to Fully Operational Developer Platform in 5 Steps!

Learn how to build a fully operational Internal Developer Platform (IDP) in just 5 steps! Discover the principles, components, and tools needed to create your own developer platform. Follow along as we cover APIs, state management, one-shot actions (workflows), RBAC & policies, and optional user interfaces like custom CLIs and GitOps. By the end, you'll have a comprehensive understanding of how to assemble an IDP that fits your needs using open-source solutions. Watch now to master developer platforms and streamline your application deployment and observation processes!

InternalDeveloperPlatform #DevOps #opensource

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ Sponsor: KodeKloud 🔗 Free courses (Feb 10 to 17) - https://kode.wiki/4hNCku4 🔗 KodeKloud -https://kodekloud.com ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬

Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ ➡ Transcript and commands: https://devopstoolkit.live/internal-developer-platforms/from-zero-to-fully-operational-developer-platform-in-5-steps 🎬 Crossplane (tutorial): https://youtube.com/playlist?list=PLyicRj904Z99i8U5JaNW5X3AyBvfQz-16 🎬 Cloud-Native Apps With Open Application Model (OAM) And KubeVela: https://youtu.be/2CBu6sOTtwk 🎬 Kubernetes-Native Policy Management With Kyverno: https://youtu.be/DREjzfTzNpA 🎬 How to apply policies in Kubernetes using Open Policy Agent (OPA) and Gatekeeper: https://youtu.be/14lGc7xMAe4 🎬 Govern Kubernetes with Kubewarden and WASM Admission Controllers: https://youtu.be/KbKQu3AqhBY 🎬 Is This the End of Crossplane? Compose Kubernetes Resources with kro: https://youtu.be/8zQtpcxmdhs 🎬 What Is... GitOps Tools?: https://youtube.com/shorts/z9nUgMOwaDg 🎬 Argo CD - Applying GitOps Principles To Manage A Production Environment In Kubernetes: https://youtu.be/vpWQeoaiRM4 🎬 Flux CD v2 With GitOps Toolkit - Kubernetes Deployment And Sync Mechanism: https://youtu.be/R6OeIgb7lUI 🎬 Rancher Fleet: GitOps Across A Large Number Of Kubernetes Clusters: https://youtu.be/rIH_2CUXmwM 🎬 Mastering Developer Portals: Discover & Integrate API Schemas with Port: https://youtu.be/PV1sBiC85Yc 🎬 From UX to API: Mastering Platform Validations with Kubernetes Validating Admission Policies: https://youtu.be/8jtYN-qvSqA 🎬 Full Application Setup in Internal Developer Platform (IDP) with Crossplane: https://youtu.be/WpgiVlODt4I 🎬 How to Create Custom CLIs for Internal Developer Platforms with Nushell: https://youtu.be/TgQZz2kGysk 🎬 Getting Started with Backstage: From Zero to Operational Dev Portal: https://youtu.be/A-3Ai--Z-Gs

▬▬▬▬▬▬ 💰 Sponsorships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please visit https://devopstoolkit.live/sponsor for more information. Alternatively, feel free to contact me over Twitter or LinkedIn (see below).

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

▬▬▬▬▬▬ ⏱ Timecodes ⏱ ▬▬▬▬▬▬ 00:00 Full Internal Developer Platform 03:16 KodeKloud (sponsor) 04:39 Components of a Platform 12:17 Step 1: APIs 16:17 Step 2: State management 21:54 Step 3: One-Shot Actions (Workflows) 25:56 Step 4: RBAC & Policies 28:57 Step 5: Custom User Interface for Operations (Optional) 30:04 Step 5-1: CLI UI 31:16 Step 5-2: GitOps UI 32:53 Step 5-3: Web UI 35:26 The Question?

via YouTube https://www.youtube.com/watch?v=fZ2DjdqT1e0

One-Shot Actions (CI) - Feat. GitHub Actions, Argo Workflows, Tekton (You Choose!, Ch. 05, Ep. 03)

One-Shot Actions - Choose Your Own Adventure: The Dignified Pursuit of a Developer Platform

In this episode, we'll go through one-shot actions tools typically used to execute tasks like workflows, CI, etc. The tools we'll explore and compare are GitHub Actions, Argo Workflows, and Tekton.

Vote for your choice of a tool for signing artifacts at https://cloud-native.slack.com/archives/C05M2NFNVRN. If you have not already joined CNCF Slack, you can do so from https://slack.cncf.io.

This and all other episodes are available at https://www.youtube.com/playlist?list=PLyicRj904Z9-FzCPvGpVHgRQVYJpVmx3Z.

More information about the "Choose Your Own Adventure" project including the source code and links to all the videos can be found at https://github.com/vfarcic/cncf-demo.

٩( ᐛ )و Whitney's YouTube Channel → https://www.youtube.com/@wiggitywhitney

githubactions #argoworkflows #tekton

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ 🔗 CNCF Slack invite (if you’re not already there): https://communityinviter.com/apps/cloud-native/cncf 🔗 Link to #you-choose channel in CNCF Slack: https://bit.ly/3NV7nHW 🔗 Policies: https://github.com/vfarcic/cncf-demo/tree/main/manuscript/workflows/README.md

via YouTube https://www.youtube.com/watch?v=6gQjnvzS5Bc

Week Ending February 02, 2025

https://lwkd.info/2025/20250205

Developer News

The London Maintainer Summit schedule is up, and registration is open. There will also be an unconference at the event.

Release Schedule

Next Deadline: Production Readiness Freeze, February 6

Production Readiness Reviews will start this week, and the Enhancements Freeze is next week, so make sure your 1.33 enhancements are opted in.

Cherry-pick deadline for the February patch release is this Friday.

Featured PRs

129816: Improve SA max token expiry with external signer logic, and plumb extended expiry duration

This PR refines the token expiration handling in the kube-apiserver. It allows you to set the --service-account-max-token-expiration flag when using an external signer by replacing the old IsExternalSigner check with a dedicated extended signing duration. This change streamlines the configuration, making token management more straightforward and reliable.

KEP of the Week

4815 DRA Partitionable Devices

Support for partitionable devices, such as GPUs, is the next step in the grand implementation plan for dynamic resource allocation (DRA). Abhishek Malvankar has published an excellent primer on this KEP. The goal of this feature is to allow runtime partitioning of GPU resources like microprocessors, graphical engines, and memory between different pods and containers so that workloads can share them as required. The DRA team would like your comments on the proposed API, to make sure that they are covering the capabilities of a variety of popular hardware.

Other Merges

Score integration tests added for TaintToleration plugin

Fix in DRA plugin to return directly when there is no resourceclaim

New lint rule added to prevent the deprecated usage of unversioned featuregate

Added context for Wait methods in integration test utils

Improvements to goroutines metric calls in parallelizer.Until

Common code for statusz and flagz moved under httputil package

Added static pod upgrade test with hostNetwork

Version Updates

cel-go to v0.23.2

via Last Week in Kubernetes Development https://lwkd.info/

February 05, 2025 at 05:00PM