Hacker News with Generative AI: Kubernetes

Ship Code to Kubernetes in Seconds: How mirrord kills 30-min CI Loops (metalbear.co)
For cloud-native applications, moving code from a developer’s local machine to a staging or testing environment is rarely straightforward.

Kubernetes, CI/CD, Cloud-Native, DevOps, Software Development

10 points by vfiftyfive 2 days ago | 0 comments

LLM-D: Kubernetes-Native Distributed Inference at Scale (github.com/llm-d)
llm-d is a Kubernetes-native distributed inference serving stack - a well-lit path for anyone to serve large language models at scale, with the fastest time-to-value and competitive performance per dollar for most models across most hardware accelerators.

Kubernetes, Distributed Systems, Inference

10 points by bbzjk7 2 days ago | 2 comments

LLM-D: Kubernetes-Native Distributed Inference (llm-d.ai)
llm-d is a Kubernetes-native high-performance distributed LLM inference framework - a well-lit path for anyone to serve at scale, with the fastest time-to-value and competitive performance per dollar for most models across most hardware accelerators.

Kubernetes, Inference, Distributed Systems, Performance

119 points by smarterclayton 3 days ago | 15 comments

Show HN: Forge – Secure, Multi-Tenant GitHub Actions Runners on K8s or EC2 (github.com/cisco-open)
Forge is a scalable, secure, and fully automated multi-tenant platform for running ephemeral GitHub Actions runners on AWS — designed for platform teams, by platform engineers.

GitHub Actions, Kubernetes, DevOps, Cloud Computing, Security

12 points by ebrilhante 4 days ago | 5 comments

Helm and YAML templating was a mistake: A Makefile Manifesto (github.com/avkcode)

DevOps, Makefile, YAML, Kubernetes, Software Development

4 points by akrylov 7 days ago | 1 comments

High Available Mosquitto MQTT on Kubernetes (raymii.org)
In this post, we'll walk through a fully declarative, Kubernetes-native setup for running a highly available MQTT broker using Eclipse Mosquitto.

Kubernetes, MQTT, Mosquitto, High Availability

4 points by jandeboevrie 8 days ago | 4 comments

High Available Mosquitto MQTT on Kubernetes (raymii.org)
In this post, we'll walk through a fully declarative, Kubernetes-native setup for running a highly available MQTT broker using Eclipse Mosquitto.

Kubernetes, MQTT, High Availability, Software

51 points by jandeboevrie 9 days ago | 30 comments

Getting tired of Helm – any better way to handle deployments in Kubernetes? (ycombinator.com)
I’ve been deep in Helm templates lately and it’s starting to feel like YAML hell.

Kubernetes, Deployment, Helm, YAML

25 points by DeborahEmeni_ 17 days ago | 23 comments

Replacing Kubernetes with systemd (2024) (yaakov.online)
Yes, I'm fully aware those are two separate things, but hear me out here for a moment.

Kubernetes, Systemd, Operating Systems, Cloud Computing, Virtualization

436 points by birdculture 18 days ago | 371 comments

Show HN: Kubetail – Real-time log search for Kubernetes (github.com/kubetail-org)
Kubetail is a real-time logging dashboard for Kubernetes (browser/terminal).

Kubernetes, DevOps, Open Source, Logging, Tools

126 points by andres 22 days ago | 35 comments

Ngrok is also now your Kubernetes ingress (ngrok.com)
We've always believed that doing networking the right way should also be the easy way.

Kubernetes, Networking, Tools

7 points by gpi 23 days ago | 0 comments

Show HN: Neurox – GPU Observability for AI Infra (github.com/neuroxhq)
This Helm chart is designed to install Neurox. Neurox helps monitor your AI workloads running on your Kubernetes GPU cluster. Purpose-built dashboards and reports combine metrics and live Kubernetes runtime state data to help admins, developers, researchers, and finance auditors surface relevant insights. Visit our main website for information.

AI, Machine Learning, Kubernetes, Monitoring, Observability

25 points by leeab 24 days ago | 22 comments

Tilt: dev environment as code (github.com/tilt-dev)
Kubernetes for Prod, Tilt for Dev

DevOps, Kubernetes, Software, Tools

136 points by saikatsg 27 days ago | 66 comments

Show HN: Wiredoor – Securely expose private services (wiredoor.net)
Wiredoor is a self-hosted ingress-as-a-service platform that lets you route internet traffic to internal apps, IoT, Kubernetes and more using a reverse VPN powered by WireGuard.

Security, Networking, Open Source, Self-Hosting, Kubernetes

15 points by dmesad 27 days ago | 5 comments

Running WebAssembly with containerd, crun, and WasmEdge on Kubernetes (ycombinator.com)
I recently wrote a blog walking through how to run WebAssembly (WASM) containers using containerd, crun, and WasmEdge inside a local Kubernetes cluster.

WebAssembly, Kubernetes, Containers, Cloud Computing, Open Source

10 points by sonichigo 32 days ago | 1 comments

Getting forked by Microsoft (philiplaine.com)
Three years ago, I was part of a team responsible for developing and maintaining Kubernetes clusters for end user customers.

Kubernetes, Microsoft, Cloud Computing

1865 points by phillebaba 32 days ago | 998 comments

Show HN: Kforward – Lightweight K8s proxy for local dev (github.com/sanspareilsmyn)
kforward is a lightweight, simple CLI tool designed to streamline local development for applications interacting with Kubernetes services.

Kubernetes, Development Tools

13 points by sanspareilsmyn 39 days ago | 5 comments

EKS Auto Mode: Simplify Kubernetes Operations (spacelift.io)
Kubernetes has revolutionized container orchestration, but managing production-grade clusters can be complex and time-consuming. Amazon Elastic Kubernetes Service (EKS) is a managed Kubernetes service that simplifies running containerized applications on AWS. It eliminates the need for users to operate their own Kubernetes control plane.

Kubernetes, Cloud Computing, Container Orchestration, DevOps

6 points by ko_pivot 41 days ago | 0 comments

Container CPU requests and limits explained with GOMAXPROCS tuning (victoriametrics.com)
In this article, we’re going to cover a few things that might’ve puzzled you if you’ve been running your applications, especially Go applications, in Kubernetes:

Containerization, Kubernetes, Go, Performance Optimization, System Administration

5 points by valyala 42 days ago | 1 comments

Raspberry Pi cluster spotted inside $6k audio processor (jeffgeerling.com)
People often ask me whether Pi clusters are useful besides just tinkering. I've built my fair share, including my most recent 'Lamp Rack' Kubernetes-in-a-Lamp cluster.

Raspberry Pi, Hardware, Audio Processing, Kubernetes

16 points by voxadam 42 days ago | 5 comments

Show HN: Koreo – A platform engineering toolkit for Kubernetes (koreo.dev)
Koreo is a new approach to Kubernetes configuration management and resource orchestration empowering developers through programmable workflows and structured data

Kubernetes, Platform Engineering, Open Source, Software, DevOps

120 points by tylertreat 43 days ago | 44 comments

Stop Treating YAML Like a String (theyamlengineer.com)
Koreo is a data structure orchestration engine. Although it's primarily designed for Kubernetes resource orchestration, Koreo's core functionality can orchestrate and manage virtually any structured data. What Koreo provides today, however, is a new approach to Kubernetes configuration management empowering developers and platform teams through programmable workflows. This approach draws upon the strengths of existing tools like Helm, Kustomize, and Crossplane while addressing some of their limitations.

Kubernetes, Configuration Management, Data Structures, Programming Languages, DevOps

23 points by tylertreat 45 days ago | 0 comments

A Comparative Analysis of K3s, MicroK8s, and Alternatives (htdocs.dev)
In the evolving landscape of container orchestration, small businesses leveraging Hetzner Cloud face critical decisions when selecting a Kubernetes deployment strategy.

Kubernetes, Cloud Computing, Container Orchestration, Small Businesses

31 points by config_yml 48 days ago | 12 comments

Nelm, a Helm 3 alternative, is generally available now (github.com/werf)

Kubernetes, DevOps, Open Source, Helm

15 points by todsacerdoti 50 days ago | 0 comments

Kai Scheduler: Kubernetes Native scheduler for AI workloads at large scale (github.com/NVIDIA)
KAI Scheduler is a robust, efficient, and scalable Kubernetes scheduler that optimizes GPU resource allocation for AI and machine learning workloads.

Kubernetes, AI, Machine Learning, Scheduling, Open Source

3 points by sherlockxu 51 days ago | 0 comments

Building a Firecracker-Powered Course Platform to Learn Docker and Kubernetes (iximiuz.com)
This is a long overdue post on iximiuz Labs' internal kitchen. It'll cover why I decided to build my own learning-by-doing platform for DevOps, SRE, and Platform engineers, how I designed it, what technology stack chose, and how various components of the platform were implemented.

DevOps, Kubernetes, Learning Platforms, Software Development, Technology Stack

153 points by fazkan 58 days ago | 12 comments

Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX (wiz.io)
Wiz Research discovered CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974, a series of unauthenticated Remote Code Execution vulnerabilities in Ingress NGINX Controller for Kubernetes dubbed #IngressNightmare. Exploitation of these vulnerabilities leads to unauthorized access to all secrets stored across all namespaces in the Kubernetes cluster by attackers, which can result in cluster takeover. This attack vector has been assigned a CVSS v3.1 base score of 9.8.

Cybersecurity, Kubernetes, Vulnerabilities

79 points by puppion 59 days ago | 11 comments

RCE Vulnerabilities in K8s Ingress Nginx (9.8 CVE for ingress-Nginx) (wiz.io)
Wiz Research discovered CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974, a series of unauthenticated Remote Code Execution vulnerabilities in Ingress NGINX Controller for Kubernetes dubbed #IngressNightmare. Exploitation of these vulnerabilities leads to unauthorized access to all secrets stored across all namespaces in the Kubernetes cluster by attackers, which can result in cluster takeover. This attack vector has been assigned a CVSS v3.1 base score of 9.8.

Cybersecurity, Kubernetes, Vulnerabilities, Ingress Nginx

11 points by todsacerdoti 59 days ago | 1 comments

Multiple vulnerabilities in ingress-Nginx (Score 9.8) (groups.google.com)
Multiple issues have been discovered in ingress-nginx that can result in arbitrary code execution in the context of the ingress-nginx controller.

Security, Kubernetes, Networking

76 points by numbsafari 60 days ago | 21 comments

Understanding DNS Resolution on Linux and Kubernetes (jpetazzo.github.io)
I recently investigated a warning message on Kubernetes that said: DNSConfigForming ... Nameserver limits were exceeded, some nameservers have been omitted. This was technically a Kubernetes event with type: Warning, and these usually indicate that there’s something wrong, so I wanted to investigate it.

Linux, Kubernetes, DNS, Troubleshooting, Network

74 points by fanf2 61 days ago | 33 comments