A curated update on what’s new in the world of Kubernetes, container orchestration, and cloud-native platforms.
Click ▼ on the headlines below to see more details !
Wiz.io disclosed four critical RCE vulnerabilities in the Kubernetes Ingress-NGINX controller, allowing unauthenticated attackers to execute code in the controller pod. Over 6,500 clusters are publicly exposed. Immediate patching is strongly advised.
This release improves provisioning workflows, adds bare metal pre-checks, and removes legacy tools like Packer and Fedora. It enhances automation for Hetzner-based Kubernetes clusters.
Glasskube is a new open-source project providing a dependency-aware, GitOps-native alternative to Helm. It supports automatic updates and package publishing via a centralized repo.
A TLS certificate validation issue in Falcon Kubernetes components (Admission Controller, Sensor) could allow MitM attacks. Hotfixes are available for version 7.06 and later.
Canonical will now offer long-term support (LTS) for Kubernetes over 12 years, starting with v1.32. It includes security updates, backports, and enterprise support contracts.
Work has started on Kubernetes 1.33, expected later in Q2 2025. Key areas include deprecation cleanup, performance gains, and extensibility improvements.
Komodor reports Kubernetes remains the preferred platform for AI/ML due to its scalability, orchestration tools like Kubeflow, and strong ecosystem integrations.