Lightnews — Scholar-powered news

Introducing Headlamp Plugin for Karpenter - Scaling and Visibility

3

Kubernetes @kubernetes.io · 2d

Introducing Headlamp Plugin for Karpenter - Scaling and Visibility-

Headlamp is an open‑source, extensible Kubernetes SIG UI project designed to let you explore, manage, and debug cluster resources. Karpenter is a Kubernetes Autoscaling SIG node provisioning project...

Autonomous Testing of etcd's Robustness

2 7

Kubernetes @kubernetes.io · 5d

Autonomous Testing of etcd's Robustness-

This is a post from the CNCF blog which we are sharing with our community as well. As a critical component of many production systems, including Kubernetes, the etcd project’s first priority is reliability....

etcd.io

1 4

Kubernetes @kubernetes.io · 5d

CVE-2020-8562: Bypass of Kubernetes API Server proxy TOCTOU -

CVE-2020-8562: Bypass of Kubernetes API Server proxy TOCTOU · Issue #101493 · kubernetes/kubernetes

CVSS Rating: Low (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N) A security issue was discovered in Kubernetes where an authorized user may be able to access private networks on the Kubernetes contr...

Week Ending September 28, 2025

2 5

Kubernetes @kubernetes.io · 6d

Last Week in Kubernetes Development: Week Ending September 28, 2025 -

Meetings in the Kubernetes Community

Kubernetes @kubernetes.io · 6d

Kubernetes New Contributor Orientation is typically held on the third Tuesday of each month, in two timezones. Check out k8s.dev/calendar to add the next session to your calendar, and get started contributing!

Community Calendar

k8s.dev

3

Kubernetes @kubernetes.io · 7d

CVE-2020-8561: Webhook redirect in kube-apiserver -

CVE-2020-8561: Webhook redirect in kube-apiserver · Issue #104720 · kubernetes/kubernetes

A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver ...

CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding · Issue #103675 · kubernetes/kubernetes

1 4

Kubernetes @kubernetes.io · 8d

CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding -

A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack. This issue has bee...

Week Ending September 21, 2025

1 5

Kubernetes @kubernetes.io · 12d

Last Week in Kubernetes Development: Week Ending September 21, 2025 -

Announcing Changed Block Tracking API support (alpha)

Kubernetes @kubernetes.io · 13d

Announcing Changed Block Tracking API support (alpha)-

We're excited to announce the alpha support for a changed block tracking mechanism. This enhances the Kubernetes storage ecosystem by providing an efficient way for CSI storage drivers to identify changed...

Kubernetes v1.34: Pod Level Resources Graduated to Beta

Kubernetes @kubernetes.io · 15d

Kubernetes v1.34: Pod Level Resources Graduated to Beta-

On behalf of the Kubernetes community, I am thrilled to announce that the Pod Level Resources feature has graduated to Beta in the Kubernetes v1.34 release and is enabled by default! This significant...

Spotlight on the Kubernetes Steering Committee

4 9

Kubernetes @kubernetes.io · 16d

Blog: Spotlight on the Kubernetes Steering Committee-

This interview was conducted in August 2024, and due to the dynamic nature of the Steering Committee membership and election process it might not represent the actual composition accurately. The topics...

www.kubernetes.dev

Kubernetes v1.34: Recovery From Volume Expansion Failure (GA)

Kubernetes @kubernetes.io · 16d

Kubernetes v1.34: Recovery From Volume Expansion Failure (GA)-

Have you ever made a typo when expanding your persistent volumes in Kubernetes? Meant to specify 2TB but specified 20TiB? This seemingly innocuous problem was kinda hard to fix - and took the project...

User feedback Survey: Building Multi cluster Management and Monitoring tool.

1 2

Kubernetes @kubernetes.io · 16d

Last call! Today is the final day to share your feedback on multi-cluster setups--don't miss this chance to help support the direction of Open Source Kubernetes' new multi-cluster management and monitoring tool! docs.google.com/forms/d/e/1F...

Thank you for taking the time to participate in this survey! The Kubernetes SIG Multi cluster UX Working Group is conducting a survey to gather insights from users, operators, and developers on how…

docs.google.com

2 3

Kubernetes @kubernetes.io · 19d

Last Week in Kubernetes Development: Week Ending September 14, 2025 -

Week Ending September 14, 2025

Kubernetes v1.34: DRA Consumable Capacity

Kubernetes @kubernetes.io · 20d

Kubernetes v1.34: DRA Consumable Capacity-

Dynamic Resource Allocation (DRA) is a Kubernetes API for managing scarce resources across Pods and containers. It enables flexible resource requests, going beyond simply allocating N number of devices...

Kubernetes v1.34: Pods Report DRA Resource Health

1 3

Kubernetes @kubernetes.io · 20d

Kubernetes v1.34: Pods Report DRA Resource Health-

The rise of AI/ML and other high-performance workloads has made specialized hardware like GPUs, TPUs, and FPGAs a critical component of many Kubernetes clusters. However, as discussed in a previous blog...

Kubernetes v1.34: Moving Volume Group Snapshots to v1beta2

1 1

Kubernetes @kubernetes.io · 22d

Kubernetes v1.34: Moving Volume Group Snapshots to v1beta2-

Volume group snapshots were introduced as an Alpha feature with the Kubernetes 1.27 release and moved to Beta in the Kubernetes 1.32 release. The recent release of Kubernetes v1.34 moved that support...

CVE-2025-9708: Kubernetes C# Client: improper certificate validation in custom CA mode may lead to man-in-the-middle attacks · Issue #134063 · kubernetes/kubernetes

2

Kubernetes @kubernetes.io · 22d

CVE-2025-9708: Kubernetes C# Client: improper certificate validation in custom CA mode may lead to man-in-the-middle attacks -

CVSS Rating: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N — Medium (6.8) A vulnerability exists in the Kubernetes C# client where the certificate validation logic accepts properly constructed certi...

Kubernetes v1.34: Decoupled Taint Manager Is Now Stable

2 2

Kubernetes @kubernetes.io · 23d

Kubernetes v1.34: Decoupled Taint Manager Is Now Stable-

This enhancement separates the responsibility of managing node lifecycle and pod eviction into two distinct components. Previously, the node lifecycle controller handled both marking nodes as unhealthy...

Kubernetes v1.34: Autoconfiguration for Node Cgroup Driver Goes GA

2 5

Kubernetes @kubernetes.io · 23d

Kubernetes v1.34: Autoconfiguration for Node Cgroup Driver Goes GA-

Historically, configuring the correct cgroup driver has been a pain point for users running new Kubernetes clusters. On Linux systems, there are two different cgroup drivers: cgroupfs and systemd. In...

User feedback Survey: Building Multi cluster Management and Monitoring tool.

2

Kubernetes @kubernetes.io · 23d

Run multi-cluster setups in production? Only 1 week left to share your feedback! Help support the direction of Open-Source Kubernetes’ new multi-cluster management & monitoring tool:

Thank you for taking the time to participate in this survey! The Kubernetes SIG Multi cluster UX Working Group is conducting a survey to gather insights from users, operators, and developers on how…

docs.google.com

7 12

Kubernetes @kubernetes.io · 26d

Last Week in Kubernetes Development: Week Ending September 7, 2025 - lwkd.info/2025/20250911

Week Ending September 7, 2025

Kubernetes v1.34: Mutable CSI Node Allocatable Graduates to Beta

Kubernetes @kubernetes.io · 26d

Kubernetes v1.34: Mutable CSI Node Allocatable Graduates to Beta-

The functionality for CSI drivers to update information about attachable volume count on the nodes, first introduced as Alpha in Kubernetes v1.33, has graduated to Beta in the Kubernetes v1.34 release!...