Hacker News with Generative AI: Kubernetes

Running WebAssembly with containerd, crun, and WasmEdge on Kubernetes (ycombinator.com)
I recently wrote a blog walking through how to run WebAssembly (WASM) containers using containerd, crun, and WasmEdge inside a local Kubernetes cluster.

WebAssembly, Kubernetes, Containers, Cloud Computing, Open Source

9 points by sonichigo 5 days ago | 0 comments

Getting forked by Microsoft (philiplaine.com)
Three years ago, I was part of a team responsible for developing and maintaining Kubernetes clusters for end user customers.

Kubernetes, Microsoft, Cloud Computing

1834 points by phillebaba 5 days ago | 997 comments

Show HN: Kforward – Lightweight K8s proxy for local dev (github.com/sanspareilsmyn)
kforward is a lightweight, simple CLI tool designed to streamline local development for applications interacting with Kubernetes services.

Kubernetes, Development Tools

13 points by sanspareilsmyn 12 days ago | 5 comments

EKS Auto Mode: Simplify Kubernetes Operations (spacelift.io)
Kubernetes has revolutionized container orchestration, but managing production-grade clusters can be complex and time-consuming. Amazon Elastic Kubernetes Service (EKS) is a managed Kubernetes service that simplifies running containerized applications on AWS. It eliminates the need for users to operate their own Kubernetes control plane.

Kubernetes, Cloud Computing, Container Orchestration, DevOps

6 points by ko_pivot 14 days ago | 0 comments

Container CPU requests and limits explained with GOMAXPROCS tuning (victoriametrics.com)
In this article, we’re going to cover a few things that might’ve puzzled you if you’ve been running your applications, especially Go applications, in Kubernetes:

Containerization, Kubernetes, Go, Performance Optimization, System Administration

5 points by valyala 15 days ago | 1 comments

Raspberry Pi cluster spotted inside $6k audio processor (jeffgeerling.com)
People often ask me whether Pi clusters are useful besides just tinkering. I've built my fair share, including my most recent 'Lamp Rack' Kubernetes-in-a-Lamp cluster.

Raspberry Pi, Hardware, Audio Processing, Kubernetes

16 points by voxadam 15 days ago | 5 comments

Show HN: Koreo – A platform engineering toolkit for Kubernetes (koreo.dev)
Koreo is a new approach to Kubernetes configuration management and resource orchestration empowering developers through programmable workflows and structured data

Kubernetes, Platform Engineering, Open Source, Software, DevOps

120 points by tylertreat 16 days ago | 44 comments

Stop Treating YAML Like a String (theyamlengineer.com)
Koreo is a data structure orchestration engine. Although it's primarily designed for Kubernetes resource orchestration, Koreo's core functionality can orchestrate and manage virtually any structured data. What Koreo provides today, however, is a new approach to Kubernetes configuration management empowering developers and platform teams through programmable workflows. This approach draws upon the strengths of existing tools like Helm, Kustomize, and Crossplane while addressing some of their limitations.

Kubernetes, Configuration Management, Data Structures, Programming Languages, DevOps

23 points by tylertreat 17 days ago | 0 comments

A Comparative Analysis of K3s, MicroK8s, and Alternatives (htdocs.dev)
In the evolving landscape of container orchestration, small businesses leveraging Hetzner Cloud face critical decisions when selecting a Kubernetes deployment strategy.

Kubernetes, Cloud Computing, Container Orchestration, Small Businesses

31 points by config_yml 21 days ago | 12 comments

Nelm, a Helm 3 alternative, is generally available now (github.com/werf)

Kubernetes, DevOps, Open Source, Helm

15 points by todsacerdoti 23 days ago | 0 comments

Kai Scheduler: Kubernetes Native scheduler for AI workloads at large scale (github.com/NVIDIA)
KAI Scheduler is a robust, efficient, and scalable Kubernetes scheduler that optimizes GPU resource allocation for AI and machine learning workloads.

Kubernetes, AI, Machine Learning, Scheduling, Open Source

3 points by sherlockxu 24 days ago | 0 comments

Building a Firecracker-Powered Course Platform to Learn Docker and Kubernetes (iximiuz.com)
This is a long overdue post on iximiuz Labs' internal kitchen. It'll cover why I decided to build my own learning-by-doing platform for DevOps, SRE, and Platform engineers, how I designed it, what technology stack chose, and how various components of the platform were implemented.

DevOps, Kubernetes, Learning Platforms, Software Development, Technology Stack

153 points by fazkan 30 days ago | 12 comments

Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX (wiz.io)
Wiz Research discovered CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974, a series of unauthenticated Remote Code Execution vulnerabilities in Ingress NGINX Controller for Kubernetes dubbed #IngressNightmare. Exploitation of these vulnerabilities leads to unauthorized access to all secrets stored across all namespaces in the Kubernetes cluster by attackers, which can result in cluster takeover. This attack vector has been assigned a CVSS v3.1 base score of 9.8.

Cybersecurity, Kubernetes, Vulnerabilities

79 points by puppion 32 days ago | 11 comments

RCE Vulnerabilities in K8s Ingress Nginx (9.8 CVE for ingress-Nginx) (wiz.io)
Wiz Research discovered CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974, a series of unauthenticated Remote Code Execution vulnerabilities in Ingress NGINX Controller for Kubernetes dubbed #IngressNightmare. Exploitation of these vulnerabilities leads to unauthorized access to all secrets stored across all namespaces in the Kubernetes cluster by attackers, which can result in cluster takeover. This attack vector has been assigned a CVSS v3.1 base score of 9.8.

Cybersecurity, Kubernetes, Vulnerabilities, Ingress Nginx

11 points by todsacerdoti 32 days ago | 1 comments

Multiple vulnerabilities in ingress-Nginx (Score 9.8) (groups.google.com)
Multiple issues have been discovered in ingress-nginx that can result in arbitrary code execution in the context of the ingress-nginx controller.

Security, Kubernetes, Networking

76 points by numbsafari 32 days ago | 21 comments

Understanding DNS Resolution on Linux and Kubernetes (jpetazzo.github.io)
I recently investigated a warning message on Kubernetes that said: DNSConfigForming ... Nameserver limits were exceeded, some nameservers have been omitted. This was technically a Kubernetes event with type: Warning, and these usually indicate that there’s something wrong, so I wanted to investigate it.

Linux, Kubernetes, DNS, Troubleshooting, Network

74 points by fanf2 34 days ago | 33 comments

Show HN: K8sel – interactive (fzf) filter for K8s YAML (github.com/jonesalk)

Kubernetes, Tools, CLI, Open Source

4 points by jalk 36 days ago | 0 comments

Google Cloud, Azure and AWS "collaborating" on a new OSS project (cloud.google.com)
We are thrilled to announce the collaboration between Google Cloud, AWS, and Azure on Kube Resource Orchestrator, or kro (pronounced “crow”). kro introduces a Kubernetes-native, cloud-agnostic way to define groupings of Kubernetes resources. With kro, you can group your applications and their dependencies as a single resource that can be easily consumed by end users.

Cloud Computing, Open Source, Kubernetes

6 points by parrotparrot99 41 days ago | 1 comments

Migrating from AWS to a European Cloud – How We Cut Costs by 62% (hopsworks.ai)
In Q4 2024, we completed the migration from AWS, seamlessly transitioning thousands of users to a resilient Kubernetes-based infrastructure on OVHCloud.

Cloud Migration, Cost Optimization, Kubernetes, European Cloud

143 points by LexSiga 43 days ago | 66 comments

xlskubectl – a spreadsheet to control your Kubernetes cluster (github.com/learnk8s)
xlskubectl integrates Google Spreadsheet with Kubernetes.

Kubernetes, Automation, Tools, Software

274 points by pabs3 44 days ago | 75 comments

Zero-Downtime Kubernetes Deployments on AWS with EKS (glasskube.dev)
I am Jakob—an engineer working at Glasskube, which helps companies distribute their application to customer-controlled environments. We build an Open Source Software Distribution platform called Distr (github.com/glasskube/distr), the hosted version of which is running on AWS EKS.

Cloud Computing, Kubernetes, AWS, Open Source, DevOps

203 points by pmig 47 days ago | 115 comments

Kubernetes Home – what do you do if your ISP changes your IP addresses? (priv.no)
In my last blog post I described external-DNS, which is a way to have Kubernetes create and update DNS entries for its services. But as I mentioned, it got me thinking a bit on ways to extend this concept to handle other external aspects of my Kubernetes environment.

Kubernetes, DNS, Networking, Cloud Computing

49 points by jandeboevrie 48 days ago | 101 comments

Nvidia GPU on bare metal NixOS Kubernetes cluster explained (fangpenlin.com)
Since the last time I published the second MAZE (Massive Argumented Zonal Environments) article, I realized that the framework is getting more mature, but I need a solution to run it on a large scale.

Nvidia GPUs, Kubernetes, NixOS, Cloud Computing

41 points by fangpenlin 54 days ago | 15 comments

Yoke: Infrastructure as code, but actually (xeiaso.net)
Yoke is a project that takes this basic idea to the next level. With Yoke, you write your infrastructure definitions in Go or Rust, compile it to WebAssembly, and then you take input and output Kubernetes manifests that get applied to the cluster.

Kubernetes, Go, Rust, WebAssembly

171 points by xena 55 days ago | 164 comments

Show HN: Grogg – Manage Multiple Kubernetes Clusters in VSCode (grogg.app)

Kubernetes, VSCode, Development Tools, Show HN

11 points by invm 60 days ago | 2 comments

The Kubernetes Mirage: When Scaling Up Becomes Your Greatest Downfall (medium.com)
It’s 3 AM when your phone erupts. Production is down. Your “fault-tolerant” Kubernetes cluster has become a digital Ouija board — pods vanishing, nodes collapsing, logs whispering nonsense. By sunrise, you’ve burned a lifetime supply of cloud credits and aged three years. Welcome to the Kubernetes paradox: the tool meant to save you now owns you.

Kubernetes, DevOps, Cloud Computing, Scaling Issues

3 points by thunderbong 61 days ago | 0 comments

Skill Path to Run Any Databases on Kubernetes (iximiuz.com)
Master database management on Kubernetes with Get Started with KubeBlocks! This skill path guides you through five tutorials—from setup to auto-tuning—showing how KubeBlocks runs any database with ease and production-grade power. Learn to deploy, upgrade, back up, monitor, and optimize databases, aligned with Operator Capability levels. By the end, you’ll wield KubeBlocks to streamline operations and boost performance. Let’s get started!

Kubernetes, Databases, DevOps, Cloud Computing, Tutorials

5 points by earayu 63 days ago | 0 comments

Replace Docker Compose with Quadlet and Systemd (matduggan.com)
So for years I've used Docker Compose as my stepping stone to k8s. If the project is small, or mostly for my own consumption OR if the business requirements don't really support the complexity of k8s, I use Compose.

Docker, Systemd, Kubernetes, Containerization, DevOps

23 points by slyall 63 days ago | 3 comments

KubeVPN: Revolutionizing Kubernetes Local Development (github.com/kubenetworks)
KubeVPN offers a Cloud-Native Dev Environment that seamlessly connects to your Kubernetes cluster network.

Kubernetes, Local Development, Cloud-Native, Networking, Development Environments

68 points by naison 65 days ago | 24 comments

AWS paywalling select knowledge base articles, requiring Premium Support plan (repost.aws)
I use kubectl commands to connect to the Amazon Elastic Kubernetes Service (Amazon EKS) API server. I received the message "error: You must be logged in to the server (Unauthorized)".

AWS, Kubernetes, Security, Cloud Computing, Support

193 points by gpi 66 days ago | 76 comments