💰 Here's something that surprised me: most Kubernetes cost waste comes from CPU, not memory. I asked Rafa Brito (who specializes in Kubernetes cost optimization) what the data shows across their customer base: cost reductions between 35-60%, averaging around 54%. But here's

https://t.co/CqErrL9N0q

🤖 Nirmata brings policy-as-code to Booth 1340 at KubeCon Atlanta! See Kyverno demos + their new AI platform engineering agent Grab swag, enter raffles for Ray-Bans, and don't miss the first in-person KyvernoCon on Nov 10 https://t.co/rCtrZPZIkm

This week on the Learn Kubernetes Weekly: 🔥 AI Infrastructure on K8s 🏠 HA Databases on K8s at Airbnb ⚡ Faster Node & Pod Startup 🎯 Pod Priority and Preemption ⚖️ Cost vs Resilience in Scheduling ⭐️ @testkubeio Read it now: https://t.co/Ot8jacS0mU

🗣️ Oleksii Kolodiazhnyi, Senior Architect at @MirantisIT, shares his structured approach to Kubernetes workload assessment https://t.co/noHKEiACky 🌟 @StormForgeIO 🎙 @birthmarkbart

🤝 What does it take to become part of the Kubernetes community? We're releasing "Kubernetes World: Finding Your Path," a book that explores the journey into cloud native, beyond certifications and code contributions Read it now: https://t.co/qyebiqv4mM

This article explains how FQDN-Controller lets Kubernetes handle egress rules using domain names instead of fixed IPs It shows how this makes DNS-based network policies simple, flexible, and automatic ➜

This tool automates the issuance and renewal of TLS certificates inside Kubernetes by introducing custom resources like `Certificate` and `Issuer` ➜ https://t.co/ShiOqG64vo

🗣️ @0xlcheetah explores the complexities of securing containers within a multi-layered infrastructure He outlines essential practices, including choosing secure base images, conducting SCAs, creating SBOMs, and validating the supply chain Full episode: https://t.co/sCm295eHYW

🎙️ After recording dozens of @K8sFM episodes, I've noticed a pattern in how companies handle resource ownership in Kubernetes clusters. Companies like Adevinta give developers complete control over their requests/limits. The logic is that teams naturally optimize when they see

https://t.co/kGIvnNhHvu

This tutorial walks you through running kube-bench for CIS compliance on Kubernetes, how to scan clusters using Jobs or CronJobs and understand which configurations pass or fail ➜

This week on the Learn Kubernetes Weekly: ✅ Scale Real-Time Video ⚠️ 7 K8s Anti-Patterns in Prod 🧠 Leases & Leader Election ⚖️ Cost & Resilience in Scheduling 🚦 Pod Priority & Preemption ⭐️ @YamlGames Read it now: https://t.co/bTsKNkbh8o

SOPS: Secrets OPerationS is an operator for managing Kubernetes Secret Resources created from user-defined SopsSecrets CRDs, inspired by Bitnami SealedSecrets and sops ➜

🗣️ Andrew Jeffree from SafetyCulture walks through their complete migration of 250+ microservices from a fragile Helm-based setup to GitOps with ArgoCD, all without any downtime https://t.co/QvGhaGWsO1 🌟 @testkubeio 🎙 @birthmarkbart

This article shows why setting `hostUsers: false` in PodSecurityPolicies or PodSecurity admission helps prevent pods from sharing host user IDs, reducing privilege risks ➜

I designed two things for KubeCon Atlanta that I'm proud of: 👾 @YamlGames: 10-min quiz rounds. Same format as our Advanced K8s workshop https://t.co/SfWnYSa1by 🔨 Platform Engineering Challenge: Teams of 4 build a platform in 90 mins https://t.co/788e4yKcpK

This tutorial shows how to enable passwordless kubectl access to an Oracle Kubernetes Engine (OKE) cluster by using OCI Instance Principals, dynamic groups, scoped IAM policies, and the OCI CLI exec plugin ➤

argocd-vault-plugin is an Argo CD plugin that retrieves secrets from Secret Management tools and injects them into Kubernetes ➤

This project builds a low-code honeypot using LLMs behind the scenes to mimic realistic interactions while staying safe It supports SSH, HTTP, TCP, Prometheus metrics, Kubernetes deployment, and YAML config ➜ https://t.co/K2ZcNcR2vE