Kubernetes 1.27 - What is your favourite feature?

Kubernetes 1.27, I usually keep trying the dev builds and once the major release is out, I create a playground on Killercoda so that you all can try it very quickly right in your browser. This time is no different,?I already have this Killercoda playground?for Kubernetes 1.27.1 created for you to try out the new shiny features.

This edition features 60 enhancements. 18 - Alpha , 29 - Beta, and 13 - Stable. Some major highlights are:

• Kubernetes v1.27 release will not be published to the k8s.gcr.io registry.
• Pod scheduling readiness graduates to beta - you can specify when the pod is ready to be considered for scheduling.
• In place pod upgrades - This is allows you to change the resource, request limits without needing to restart it.
• CEL Match conditions and enhancements to Validating Admission policy, don’t know what it is??Watch my video here?.
• Node Log access - helps the cluster administrators to get logs form the node to troubleshoot issues faster.
• example
• kubectl get --raw "/api/v1/nodes/node-1/proxy/logs/?query=kubelet"
• New VolumeGroupSnapshot - Helps to you take multiple volume snapshots together for better consistency.
• New volume mode?ReadWriteOncePod?that allows only a single pod to write to a volume.
• Faster SELinux volume relabeling - helps in speeding up the container start times.
• You can now fetch the CVE’s programatically.

What is your Kubernetes 1.27 feature? Comment below ;)

Kubesimplify Updates

We have revamped our discord server, special thanks to?Kunal Verma?for doing that. Many new initiatives are starting, so do join our discord and get involved in the best cloud native discussions.

We did publish some cool blogs worth reading, btw we crossed 200k+ reads :) some of them are featured on hashnode too!

• How get started with Hashicorp Vault????by?Dipankar Das
• Implementing Kubernetes Network Policies: A Comprehensive Guide?by?Srinivas Karnati

Follow Kubesimplify on?Hashnode,?Twitter?and?Linkedin. Join our?Discord?server to learn with us.

Videos

Awesome Reads

• Kubernetes 1.27 – What’s new??by VíCTOR JIMéNEZ CERRADA - Sysdig always nails down with awesome highlights to the new Kubernetes release. By now, you already know the major highlights as I mentioned them at the beginning of my newsletter.
• Announcing eBPF 2.0: excelBPF??by Bill Mulligan- excelBFP is the next version of eBPF that brings eBPF benefits to spreadsheets. This will help the community to a large extent.
• Observability Made Easy: Building a RESTful API with Actix Web and OpenTelemetry?by Engin- Very neat blog with introduction to Observability, OpenTelemetry, how to do OpenTelemetry in application and then expose metric endpoint.
• How WebAssembly is accelerating new web functionality?by Thomas Nattestad- how WebAssembly is accelerating new web functionality by offering portability plus performant access to the CPU. This allows for faster iteration speed, immediate support across browsers, and improved security. However, a few disadvantages and limitations are also mentioned.
• Keeping Kubernetes Secure with Updated Go Versions?by Jordan Liggitt - Kube community has worked with the Go community to address the difficulties of adopting new Go versions, which allows Kubernetes to update release branches to supported Go versions without exposing users to behavior changes. The Kubernetes maintainers remain committed to making Kubernetes patch releases safe and non-disruptive.
• Announcing WCGI: WebAssembly + CGI?by Michael Bryan - Wasmer has announced the release of WCGI. WASM + CGI a powerful combo, allowing developers to reuse their existing CGI applications by compiling them to WASI.
• Let Spin lift your key-value store?by?Thorsten Hans?- Spin has Key value support since version 0.9 and this article discuss how to use that feature to build a serverless application(a simple URL shortener)
• Kubernetes: Container Network Interface(CNI)?by?Claire Lee?- Short concise read on Kubernetes CNI.
• vcluster + Dapr Cost Optimizations?by?Mauricio Salatino?- A great use case using vcluster and Dapr.
• Unexpectedly Useful: A Real World Use Case For WebAssembly System Interface (WASI)

Learning resources/repositories

• s3cme?- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance.
• credentials-operator?- Automatically register and generate credentials for Kubernetes pods using SPIRE or Otterize Cloud
• Burn?- A Flexible and Comprehensive Deep Learning Framework in Rust
• Fleek?- Fleek is an all-in-one management system for everything you need to be productive on your computer.

Learn from Twitter

https://twitter.com/danielepolencic/status/1645398015736414210?s=20

https://twitter.com/PulumiCorp/status/1646530231639867392