From Ingress NGINX to Higress: Migrating 60+ Resources in 30 Minutes with AI
Following the official retirement of Ingress NGINX in March 2026, enterprises faced a compliance deadline to replace the now‑unsupported controller. An Alibaba engineer demonstrated a migration of more than 60 complex Ingress resources to Higress, an AI‑native API gateway built on Envoy and Istio, using an AI agent to automate analysis, simulation, and custom logic translation. The AI‑driven workflow completed the full migration, including WASM plugin generation, in just 30 minutes with zero downtime. The case showcases how AI can accelerate cloud‑native refactoring while meeting security mandates.
Auto-Diagnosing Kubernetes Alerts with HolmesGPT and CNCF Tools
STCLab’s two‑person SRE team built an AI‑driven investigation pipeline called HolmesGPT that automatically triages Amazon EKS alerts using the ReAct pattern. By feeding the LLM runbooks that specify available tools per namespace, they slashed unnecessary tool calls from 16 to...
From Public Static Void Main to Golden Kubestronaut: The Art of Unlearning
A former Java developer recounts his ten‑year journey from writing a single public static void main to earning all five CNCF certifications and the Golden Kubestronaut title. He explains that moving to Kubernetes forced him to unlearn monolithic assumptions and embrace...
K3s on On-Prem Infrastructures the GitOps Way: Writing a Custom K0rdent Template From Scratch
The blog details how the authors built a fully declarative K3s cluster on a Proxmox on‑premise environment using k0rdent’s Bring‑Your‑Own‑Template (BYOT) approach. They created a custom Helm chart to serve as a k0rdent infrastructure provider that clones existing Proxmox VM...
The AI-Driven Shift in Vulnerability Discovery: What Maintainers and Bug Finders Need to Know
AI‑powered code models are now able to locate real software vulnerabilities with minimal prompts, dramatically increasing the volume of reports to open‑source projects. The surge includes a flood of low‑impact, often invalid findings that consume hours of analyst time, while...
How To Measure the ROI of Developer Tools
The article outlines how organizations can prove the value of developer tools by using three measurement approaches: internal surveys, DORA metrics, and cost‑based analysis. It explains that surveys capture qualitative friction, DORA metrics provide quantitative engineering outcomes, and cost analysis...
Ingress-Nginx to Envoy Gateway Migration on CNCF Internal Services Cluster
The CNCF internal services cluster, which runs Codimd, GUAC and KCP, is migrating from the retiring ingress‑nginx controller to Envoy Gateway using the Kubernetes Gateway API. A shared Gateway object replaces multiple ingress controllers, consolidating load balancer resources and simplifying...
Peer-to-Peer Acceleration for AI Model Distribution with Dragonfly
Dragonfly, a CNCF‑graduated P2P file distribution system, now supports native hf:// and modelscope:// protocols for Hugging Face and ModelScope hubs. The new backends let dfget download model files or entire repositories directly, preserving authentication, revision pinning, and recursive capabilities. By...
Sustaining OpenTelemetry: Moving From Dependency Management to Stewardship
Bloomberg is partnering with the Cloud Native Computing Foundation to run a structured mentorship cohort focused on OpenTelemetry from April 8 to June 17, 2026. The program will involve 30‑45 Bloomberg engineers working two hours per week with seven OpenTelemetry maintainers on...
LLMs on Kubernetes Part 1: Understanding the Threat Model
Running large‑language models (LLMs) on Kubernetes provides familiar scheduling and isolation, but the platform cannot assess the safety of natural‑language prompts or the confidentiality of generated output. The article highlights the OWASP Top 10 for LLM applications and focuses on four...
Announcing Kubescape 4.0 Enterprise Stability Meets the AI Era
Kubescape 4.0 launches with enterprise‑grade stability, delivering General Availability for Runtime Threat Detection and a new Kubernetes‑native Storage layer. The release consolidates security agents by deprecating the host‑sensor and merging its functions into a single node‑agent, simplifying cluster management. It...
Higress Joins CNCF: Delivering an Enterprise-Grade AI Gateway and a Seamless Path From Nginx Ingress
Higress, an AI‑native API gateway built on Envoy and Istio, has passed the CNCF Technical Oversight Committee vote and entered the CNCF Sandbox. The project unifies traffic, microservices and AI gateways, offering a secure, xDS‑based replacement for Nginx Ingress with...
Fluid Becomes a CNCF Incubating Project
The Cloud Native Computing Foundation’s Technical Oversight Committee has promoted Fluid to an incubating project, recognizing its maturity as a data‑orchestration layer for Kubernetes. Fluid adds an abstraction layer that enables elastic dataset caching, dynamic source switching, and cross‑storage acceleration...
Tekton Becomes a CNCF Incubating Project
The Cloud Native Computing Foundation’s Technical Oversight Committee has accepted Tekton as an incubating project, marking a key maturity milestone after its stable v1.0 Pipelines release. Tekton is a Kubernetes‑native CI/CD framework with over 11,000 GitHub stars, 600 contributors, and...
Kusari and CNCF: Advancing Software Supply Chain Security for Cloud Native Projects
Kusari announced a partnership with the Cloud Native Computing Foundation (CNCF) to give CNCF projects free access to its AI‑powered security tool, Kusari Inspector. The platform embeds code‑review and dependency‑management checks directly into pull‑request workflows, offering visualized dependency graphs, risk...
Beyond Batch: Volcano Evolves Into the AI-Native Unified Scheduling Platform
Volcano announced a major upgrade with Volcano v1.14, Kthena v0.3.0 and the new AgentCube, repositioning the project from a batch‑only scheduler to an AI‑native unified platform. The release adds a sharding controller that dynamically partitions resources for batch, inference and agent workloads,...
CNCF Introduces a New Recertification Program as Kubestronaut Community Surpasses 3,500
CNCF unveiled the Certification Advancement & Recertification Experience (CARE) program at KubeCon Europe, allowing advanced Kubernetes certifications to automatically renew foundational credentials. The initiative, effective Jan. 1 2026, streamlines credential maintenance for practitioners. Simultaneously, the Kubestronaut community topped 3,500 members, with over...
Agones Moves to the CNCF: A New Era for Open Source Multiplayer Game Infrastructure
The open‑source Agones platform, which orchestrates dedicated multiplayer game servers on Kubernetes, has officially moved to the Cloud Native Computing Foundation (CNCF) as a Sandbox project. Originating from a Google‑Ubisoft collaboration in 2017, Agones now boasts more than 250 contributors...
Crossplane and AI: The Case for API-First Infrastructure
AI‑assisted development has moved the bottleneck from writing code to post‑push activities such as provisioning, compliance, and day‑two operations. Traditional platforms expose policies and state through fragmented UIs and pipelines, which hinders AI agents that require machine‑readable interfaces. Crossplane extends...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: Platform Engineering Day
Platform Engineering Day returns for its fifth edition at KubeCon + CloudNativeCon Europe 2026 in Amsterdam, expanding on the original Paris launch. The two‑track program blends deep technical sessions with security guardrail discussions and a CNCF Platform Engineering Technical Community...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: Observability Day
Observability Day, a co-located event at KubeCon + CloudNativeCon Europe 2026, brings together CNCF observability project maintainers and practitioners. The program expands beyond traditional monitoring, highlighting AI-driven trace analysis, cost‑efficiency strategies, and large‑scale telemetry engineering. Featuring two parallel tracks, the...
Making Etcd Incidents Easier to Debug in Production Kubernetes
Kubernetes operators often face vague symptoms when etcd degrades, leading to slow API responses or total cluster outages. VMware’s open‑source etcd‑diagnosis tool consolidates health, disk I/O, network latency, and resource‑pressure metrics into a single report, turning guesswork into actionable insight....
Sustaining Open Source in the Age of Generative AI
Open source projects are grappling with a surge of AI‑generated pull requests that overwhelm maintainers, prompting Kyverno to publish a concrete AI Usage Policy. The policy acknowledges that while generative AI accelerates code creation, human review capacity remains limited and...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: OpenTofu Day
At KubeCon + CloudNativeCon Europe 2026, the inaugural OpenTofu Day highlighted the rapid maturation of the OpenTofu project, a Terraform‑compatible, open‑source IaC engine. The CNCF officially accepted OpenTofu into its sandbox, unveiling version 1.2 with native Kubernetes providers and enhanced security...
Registry Mirror Authentication with Kubernetes Secrets
The CRI‑O credential provider enables Kubernetes clusters to authenticate to private registry mirrors using namespace‑scoped Secrets instead of global node‑level credentials. Leveraging the kubelet image‑credential‑provider plugin API (stable since K8s 1.26) and the KubeletServiceAccountTokenForCredentialProviders feature gate, the provider extracts the pod’s...
The Great Migration: Why Every AI Platform Is Converging on Kubernetes
Kubernetes has become the de‑facto operating system for AI, with 82% of container users and two‑thirds of generative‑AI teams running production workloads on the platform. The shift from stateless microservices to data processing, distributed training, LLM inference, and autonomous agents...
OSPOlogy Day Cloud Native at KubeCon + CloudNativeCon Europe
OSPOlogy Day Cloud Native, hosted by the CNCF and the TODO Europe Chapter, will convene a small group of open‑source program offices at KubeCon + CloudNativeCon Europe on March 23, 2026. The half‑day session uses lightning talks and round‑table discussions under the Chatham House...
Scaling Organizational Structure with Meshery’s Expanding Ecosystem
Meshery, one of the fastest‑growing CNCF projects, announced the split of its GitHub repositories into two organizations: github.com/meshery for the core platform and github.com/meshery-extensions for extensions and integrations. The partition aims to improve modularity, scalability, and community ownership by allowing the core...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: Kubernetes on Edge Day
Kubernetes on Edge Day returns to KubeCon + CloudNativeCon Europe 2026, spotlighting how Kubernetes is deployed beyond data centers into resource‑constrained, distributed environments. Since its 2022 debut, the co‑located event has grown alongside the edge ecosystem, now featuring AI, telco, data, and...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: BackstageCon
BackstageCon, the dedicated conference for the Backstage developer portal, returns as a co‑located event at KubeCon + CloudNativeCon Europe 2026. The program emphasizes AI‑enabled platform engineering, showcasing sessions on managing AI software catalogs, integrating Kubeflow, and extending Backstage with runtime...
Kubernetes WG Serving Concludes Following Successful Advancement of AI Inference Support
The Kubernetes Working Group (WG) Serving has been disbanded after successfully establishing the platform as a preferred orchestrator for AI inference workloads. The group’s workstreams gathered requirements from model servers, hardware vendors, and inference providers, leading to the adoption of...
Kubernetes as AI’s Operating System: 1.35 Release Signals
Kubernetes 1.35, nicknamed “Timbernetes,” rolls out key features aimed at AI/ML workloads. It introduces workload‑aware scheduling (alpha) with gang‑scheduling primitives, graduates in‑place pod resizing to stable, and makes KYAML the default kubectl output format. Dynamic Resource Allocation remains enabled, improving...
KubeCon + CloudNativeCon Europe 2026 Co-Located Event Deep Dive: Agentics Day: MCP + Agents
Agentics Day at KubeCon+CloudNativeCon Europe 2026 spotlights the Model Connectivity Protocol (MCP) and AI agents, moving them from experimentation to production. The half‑day, community‑driven event features over ten talks on real‑world deployments, governance, and security. It targets platform, SRE, infrastructure...
What CNCF Project Velocity in 2025 Reveals About Cloud Native’s Future
The CNCF’s 2025 Project Velocity report shows that cloud‑native projects are still measured by real signals such as commit frequency, contributor growth, and deployment patterns. Kubernetes retains its dominant position, while Backstage’s contributions have more than doubled and OpenTelemetry sees...