Features Archives

LLMs & Kubernetes Configuration: Automating Hardening, Drift Detection and Policy Enforcement

Kubernetes misconfigurations remain the top security risk. AI copilots promise automated hardening, drift detection, and policy enforcement to make clusters safer ...

Report Details Raft of Kubernetes Management Challenges

An analysis of thousands of incidents involving Kubernetes clusters finds IT teams are spending 34 workdays per year resolving issues, with 79% of those incidents stemming from recent system changes. The report, ...

Mike Vizard | October 1, 2025 | IT, Komodor, Kubernetes management, MTTD

service mesh, Buoyant, Istio Solo.io Buoyant Linkerd service mesh

Service Mesh Evolution: Ambient Mode, Gateways & The Return of Simpler Architectures

Service mesh is evolving beyond sidecars. Ambient mode and Gateway APIs deliver security, observability, and traffic control with less overhead. Teams benefit from leaner, more flexible architectures ...

Alan Shimel | October 1, 2025 | Alan, ambient mode, cloud native security, container networking, devops, gateway API, Istio, Kubernetes networking, microservices, observability, OpenShift Service Mesh, platform engineering, service mesh, sidecar alternatives, SRE, traffic management, waypoints, ztunnel

Mirantis Adds Consulting Team to Help Deploy MCP Servers on Kubernetes Clusters

Mirantis today added a set of services for organizations looking to deploy artificial intelligence (AI) workloads accessing Model Context Protocol servers deployed on Kubernetes clusters. Randy Bias, vice president of open source ...

Mike Vizard | September 30, 2025 | AI, cloud native, MCP, Mirantis

state, stateless, kubernetes, scanning, cloudsmith, stateless ephemeral stateful security Kubernetes unikernel Sumo Logic

Stateful Microservice Migration & the Live-State Challenge in Kubernetes

Alan argues that Kubernetes can’t ignore state any longer. While stateless apps fit the original vision, real-world workloads — from databases to AI pipelines — demand continuity. A new research framework, MS2M ...

Kubernetes, observability, tracing, kubernetes observability, Grafana labs, kubernetes, observe, tool, Datadog, data, observability, kubernetes Docker Granulate observability

Bridging Observability & Security in Kubernetes: Beyond Just Metrics

Kubernetes has expanded agility but also the attack surface. Alan argues that observability and security can no longer live in silos — metrics, logs, and traces already hold critical security signals, while ...

GitOps, Red Hat, Civo Flux ,GitOps. Weaveworks Sysdig AI

GitOps at Fleet Scale: Decentralization vs. Control

Alan unpacks Red Hat’s agent-based GitOps architecture for OpenShift and what it means for scaling GitOps across fleets of Kubernetes clusters. From central control to decentralized agents, discover how balance drives the ...

Alan Shimel | September 26, 2025 | CNCF GitOps standards, decentralized GitOps, federated GitOps model, GitOps scalability, Kubernetes GitOps scaling, OpenShift GitOps preview, Red Hat agent-based GitOps

runtime, visibility, Chainguard, threat, cloud-native security, Venafi, security, sigstore, KubeCon, cloud-native, security, secure, Rubrik, Kubernetes, Cloud-Native Security Best Practices

CNCF, Docker Partnership Streamlines Container Security, Operations

CNCF and Docker partner to boost open source projects with security, scalability and trusted container delivery through Docker’s DSOS program ...

Nathan Eddy | September 25, 2025 | cloud native security, CNCF Docker partnership, CNCF projects Kubernetes Prometheus Envoy OpenTelemetry, container image provenance, container registry scalability, container security, DevSecOps open source, Docker Hub trusted images, Docker Hub usage insights, Docker Scout vulnerability scanning, Docker Sponsored Open Source, DSOS program, open source maintainers, open source software supply chain security

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution

The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...

Alan Shimel | September 24, 2025 | cloud native security, CNCF Docker partnership, container image provenance, Docker Hub namespaces, Kubernetes trust, OSS Sponsored Program, platform engineering security, SBOM generation, signed container images, software supply chain

The Cloud-Native Frontier is at the Edge

The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...