Kubernetes Blog

Posts in 2026

• Running Agents on Kubernetes with Agent Sandbox

  By Janet Kuo, Justin Santa Barbara | Friday, March 20, 2026 in Blog

  The landscape of artificial intelligence is undergoing a massive architectural shift. In the early days of generative AI, interacting with a model was often treated as a transient, stateless function call: a request that spun up, executed for perhaps …

  Read more

• Securing Production Debugging in Kubernetes

  By Shridivya Sharma | Wednesday, March 18, 2026 in Blog

  During production debugging, the fastest route is often broad access such as cluster-admin (a ClusterRole that grants administrator-level access), shared bastions/jump boxes, or long-lived SSH keys. It works in the moment, but it comes with two …

  Read more

• The Invisible Rewrite: Modernizing the Kubernetes Image Promoter

  By Sascha Grunert (Red Hat) | Tuesday, March 17, 2026 in Blog

  Every container image you pull from registry.k8s.io got there through kpromo, the Kubernetes image promoter. It copies images from staging registries to production, signs them with cosign, replicates signatures across more than 20 regional mirrors, …

  Read more

• Announcing the AI Gateway Working Group

  By Keith Mattix, Nir Rozenbaum, Morgan Foster, Flynn | Monday, March 09, 2026 in Blog

  The community around Kubernetes includes a number of Special Interest Groups (SIGs) and Working Groups (WGs) facilitating discussions on important topics between interested contributors. Today, we're excited to announce the formation of the AI …

  Read more

• Before You Migrate: Five Surprising Ingress-NGINX Behaviors You Need to Know

  By Steven Jin (Microsoft) | Friday, February 27, 2026 in Blog

  As announced November 2025, Kubernetes will retire Ingress-NGINX in March 2026. Despite its widespread usage, Ingress-NGINX is full of surprising defaults and side effects that are probably present in your cluster today. This blog highlights these …

  Read more

• Kubernetes v1.36: Deprecation and removal of Service ExternalIPs

  By Adrian Moisey (independent), Dan Winship (Red Hat), | Friday, February 27, 2026 in Blog

  The .spec.externalIPs field for Service was an early attempt to provide cloud-load-balancer-like functionality for non-cloud clusters. Unfortunately, the API assumes that every user in the cluster is fully trusted, and in any situation where that is …

  Read more

• Kubernetes v1.36: New Metric for Route Sync in the Cloud Controller Manager

  By Lukas Metzner (Hetzner) | Thursday, February 26, 2026 in Blog

  Kubernetes v1.36 introduces a new alpha counter metric route_controller_route_sync_total to the Cloud Controller Manager (CCM) route controller implementation at k8s.io/cloud-provider. This metric increments each time routes are synced with the cloud …

  Read more

• Spotlight on SIG Architecture: API Governance

  By Frederico Muñoz (SAS Institute) | Thursday, February 12, 2026 in Blog

  This is the fifth interview of a SIG Architecture Spotlight series that covers the different subprojects, and we will be covering SIG Architecture: API Governance. In this SIG Architecture spotlight we talked with Jordan Liggitt, lead of the API …

  Read more

• Introducing Node Readiness Controller

  By Ajay Sundar Karuppasamy (Google) | Tuesday, February 03, 2026 in Blog

  In the standard Kubernetes model, a node’s suitability for workloads hinges on a single binary "Ready" condition. However, in modern Kubernetes environments, nodes require complex infrastructure dependencies—such as network agents, storage …

  Read more

• New Conversion from cgroup v1 CPU Shares to v2 CPU Weight

  By Itamar Holder (Red Hat) | Friday, January 30, 2026 in Blog

  I'm excited to announce the implementation of an improved conversion formula from cgroup v1 CPU shares to cgroup v2 CPU weight. This enhancement addresses critical issues with CPU priority allocation for Kubernetes workloads when running on systems …

  Read more