Developer News

The Steering Committee Election is still open for voting through Wednesday! Cast your ballot now.

Registration for Kubernetes Contributor Summit Chicago is open.

Release Schedule

Developer News

The Steering Committee Election ends on 27th September. If you think you should be eligible, you can file for an exception before 24th September 11:59:59 UTC.

Release Schedule

Next Deadline: Production Readiness Review Freeze, September 28th

Developer News

Please check how the linter is working against your PRs. Both pull-kubernetes-linter-hints and pull-kubernetes-verify-strict-lint running on submit. Right now the latter is non-blocking, but it will change, so please report any times you see it failing to #k8s-code-organization.

Test jobs have been switched to running only external cloud providers, since that's the default. Check if this breaks your tests.

Contributor Summits:

Last Week In Kubernetes Development

Week Ending September 3, 2023

Developer News

The Kubernetes legacy Linux package repositories, apt.kubernetes.io and yum.kubernetes.io, have been deprecated and will be frozen on September 13, 2023. Use the new Kubernetes community-owned package repository at pkgs.k8s.io.

Developer News

Voting has begun for the Kubernetes Steering election; cast your ballot on the election site, which also tells you if you're eligible or not. If you're not, and should be, then request an exception. With 11 candidates for four seats, this will be a tough one, so give yourself some time.

CVE-2023-3676, CVE-2023-3955, and CVE-2023-3893 were reported for Kubernetes on Windows, and are patched in the current update releases. These are high-risk security issues, and all Windows users should upgrade as soon as possible.

The #kubernetes-contributors Slack channel has been split into #kubernetes-new-contributors and #kubernetes-org-members. The former will be the channel for introductions, getting started and mentorship requests, whereas org-members will be for established contributor communications.

Last Week in Kubernetes Development

Week Ending August 20, 2023

Developer News

We deeply regret to announce the loss of Kubernetes contributor Kris Nóva. A member of our community since the beginning, Kris was known for her contributions to ClusterAPI, Kops, Falco, and many other areas, as well as writing Cloud Native Intrastructure. She will be deeply missed. To remember Kris, please donate in her name to the Nivenly Foundation or Trans Lifeline.

Last Week in Kubernetes Development

Week Ending August 13, 2023

Developer News

It's Release Week!

Last Week in Kubernetes Development

Week Ending August 6, 2023

Developer News

The 2023 Steering Committee Election has started, with Nominations. Do you want to run for Steering? Of course you do, nominate yourself by August 26. Also, all contributors should check if they are eligible to vote by logging into elections.k8s.io and seeing if it says "Eligible". If it doesn't, and your should be eligible, file an exception.

Last Week in Kubernetes Development

Week Ending July 30, 2023

Developer News

Nominations are open for the Kubernetes Code of Conduct Committee. If it is your time to serve the project on the CoCC, submit your nomination here by August 4th.

Last Week in Kubernetes Development

Week ending July 23, 2023

Our apologies for this late issue. Our newsletter platform what having technical issues, which have been fixed.

Developer News

Developer News

Priyanka Saggu of ContribEx has announced some changes to Org Membership requirements, mainly letting memberships expire after 1 year of inactivity. If you have submitted multiple PRs to Kubernetes, consider becoming an Org Member today. Please reach out to ContribEx on Slack or anywhere if you have any questions about the new guidelines or on becoming a member.

Release Schedule

Next Deadline: CODE FREEZE July 18th/19th

Last Week in Kubernetes Development

Week Ending July 9, 2023

Developer News

LWKD is looking for new/additional writers. We would love to have more folks who can help us produce LWKD, and add important coverage for Kubernetes developers, such as current KEPs or Kubernetes subprojects; volunteer on those issues.

Developer News

KOps has notified users of a high-risk security issue on GCP (CVE-2023-1943); upgrade KOps and/or disable Gossip mode in GCP.

If you are a SIG Chair or TL, or a Subproject Lead, please fill out a poll for a second, Asia-friendly, time for the monthly Leads Meeting.

The Kubernetes-VMWare User Group is shutting down. We thank everyone involved for all their work in our community.

Developer News

Rita Zhang of SIG-Security has found and patched two security vulnerabilities in Kubernetes in ImagePolicy webhooks and ServiceAccount. Tim Allclair also found a vulnerability in seccomp. Might wanna apply those patch updates as soon as you can.

Michael Morris has stepped down as co-lead of Gateway API GAMMA.

The community is brainstorming designs for a new contributor badge for registered Kubernetes contributors; design help wanted.

Developer News

Please migrate your test jobs off the old Prow Default Cluster as soon as you can, please.

The Kustomize Project is looking to train new maintainers; apply if you love Kustomize and you can spend some serious time on it.

The Kubernetes Contributor Summit Chicago is looking for event volunteers to help run the Summit. Note that you must be a Kubernetes contributor to be eligible.

Developer News

Back in May, SIG Docs merged a workaround for CI bugs where most website previews were timing out. If you’re still seeing those issues, update your fork’s main branch.

Release Schedule

Next Deadline: PRR Freeze, June 8th (this Thursday)

Last Week in Kubernetes Development

Week ending May 28, 2023

Visit www.lwkd.info

Developer News

Developer News

The Registry team found and fixed a security issue. Thank you Nicolas Chatelain for reporting it.

Reminder that you should be using registry.k8s.io for all community container images.

Release Schedule

Developer News

SIG-K8s-Infra is moving multiple Prow jobs to the donated build cluster on AWS.

Jeremy Rickard has proposed specifics for the revived WG-LTS.

Daniel Smith has stepped down as API-Machinery Tech Lead, and nominated Joe Betz as his replacement.

Developer News

In Memoriam: Carolyn Van Slyck, Kubernetes, CNCF, and Porter contributor.

Last week we held the Kubernetes Contributor Summit, which included many discussion sessions(Notes). Big takeaways from this include the revival of the LTS Working Group, as well as discussions on using golangci-lint and how we deal with having many repositories.

Release Schedule

Kubecon EU Activities

Next week is Kubecon Amsterdam. Activities for Kubernetes contributors include:

• The Contributor Summit
• Contributor Social (requires registration)
• SIG Meet & Greet
• Maintainer Sessions from the following SIGs and WGs: Security, Scheduling, Release, Storage, Windows, Cluster-Lifecycle, Multicluster, Data Protection, Apps, CLI (Kubeadm), and Contributor Experience
• Sessions from the Steering Committee, Code of Conduct Committee, and Security Response committee on what they do and how

See you at Kubecon!

Developer News

Leadership changes! SIG-Testing's founding leads Benjamin Elder and Aaron Crickenberger are stepping down, and Brian McQueen is stepping up as Chair. SIG-ContribEx is doing a total leadership rotation, with Kaslin Fields, Nabarun Pal, Madhav Jivrajani, and Prijanka Saggu, replacing outgoing leads Nikhita Raghunath, Christophe Blecker, Bob Killen, and Josh Berkus.

Amsterdam Contributor Summit Registration is open. You need to be registered for the Summit even if you only plan to go to the social; no walk-ins will be accepted.

Release Schedule

Developer News

The EU Contributor Summit call for session proposals ends this Friday; if you want to do something at the KCSEU, please fill it out. Note that this includes SIG Meetings, so if your SIG would like a room, use the form.

Release Schedule

Next Deadline: Everything Is Due, April 4th

Developer News

Deprecated registry k8s.gcr.io has been redirected to registry.k8s.io. This may cause issues with some builds and/or deployments, so check yours for image pull errors. Please update your infrastructure and code to use the new registry, as much as you can.

The resource.k8s.io/v1alpha1 API types for dynamic resource allocation (ResourceClaim, ResourceClaimTemplate, ResourceClass, PodScheduling) have been removed and replaced with a resource.k8s.io/v1alpha2. As this is still an alpha feature, no upgrade path is provided and any existing objects must be removed before upgrade or you risk database sadness. As part of this bump, some incompatible changes have been made. If you’ve been trying out this alpha feature, please make sure to check out the changes and take appropriate action in your development/testing environments.

Release Schedule

Developer News

Lots of important and urgent news this week.

In one week, deprecated registry k8s.gcr.io will be automatically redirected to registry.k8s.io. This may break some existing Kubernetes setups, especially those running older versions in secure or gapped environments. Make sure that registry.k8s.io is on your allowlist for image pulls. This measure is only temporary; long-term, you still need to update your installations and components to use registry.k8s.io.

We've had to stop releasing Kubernetes for 32-bit Linux/ARM because Golang isn't consistently working on it. If 32-bit ARM as a platform matters to you, consider getting involved in the Go project to stabilize support.

Developer News

Reminder: k8s.gcr.io will be frozen on April 3rd. You need to update all components to target registry.k8s.io. Also, update your production clusters to pull from registry.k8s.io; this should work with both (updated) containerd and CRI-O now.

The Contributor Summit is looking for session suggestions. These can be sessions you’ll lead, or sessions you want to attend – please suggest!

Kubernetes has been invited to participate in the 2023 OpenInfra Project Team Gathering. If you’re interested – especially if you were going anyway – please tell Kendall Nelson. We particularly want folks who work on the OpenStack Cloud Provider.

Developer News

Image Registry Migration: the old signing key, on packages.cloud.google.com, has stopped working. You need to use the new key on dl.k8s.io. The community-images krew plugin will help you identify any remaining references to the old registry on your cluster. It's not just users who need to update; 60 of our project's own repositories still refer to the old registry. Please check those resources and update as soon as you can.

Registration is open for the Amsterdam contributor summit. If you are eligible and attending, please register as soon as you can, so that the summit team can get a headcount and you can get a hoodie.

Aravindh Puthiyaparambil has been nominated as co-chair of SIG-Windows. Casey Davenport is stepping down from SIG-Network, and has nominated Shane Utt to take his place.

Developer News

The changes to the auto-close workflow have been merged.

The commit bot will stop suggesting /assign commands as part of its response to opening a new PR, to encourage authors to seek reviewers and not go straight to approvers. Leads and owners should boost this by recruiting/mentoring reviewers. If your SIG or project needs any help with this, please reach out to ContribEx.

Do we need to support 32-bit ARM? Speak up if it’s something you use.

Developer News

The old image registry, k8s.gcr.io, will stop taking updates on April 3. As a contributor, you need to make sure that you’re pushing builds to registry.k8s.io and that any components that you call are pulling from the new registry. Users should also check any of their CI that pulls images.

The Kubernetes Java client is affected by CVE-2022-1471, a remote code execution. Update your Java client ASAP.

Release Schedule

Developer News

Filip Krepinsky would like to make controller names more consistent. Also, changes to issue triage are getting closer to being merged.

We are now skipping some failing Windows unit tests because nobody has stepped forward to fix them. Windows remains poorly tested as a platform. If you’re interested in helping out, please contact SIG-Windows.

Release Schedule

Developer News

The new usage metrics project is launched, and already has a testgrid

SIG Security wants to know if you’re interested in a Threat Modeling Workshop at either Contributor Summit this year.

The future of the monthly Community Meeting is unclear; please provide your insight.

Last Week In Kubernetes Development

Week Ending 2023-01-15

Developer News

Basic information for the Europe Contributor Summit is up. CfP for sessions opening soon. Travel assistance for Kubernetes leads without a current corporate sponsor may be available; contact Contributor Experience.

Developer News

Happy new year! This is the first LWKD of the new year, so it covers merges and events from over the holidays.

Tim Hockin has some ideas about changes to the Alpha/Beta/GA cadence. Share your thoughts by commenting on the document.

Tim Allclair proposes no longer staleifying triaged issues. Comment on the issue if have any feedback on this change.

Last Week in Kubernetes Development

Week Ending December 11, 2022

Developer News

Kubernetes version 1.26 “Electrifying” is now available. The biggest things in this release are the number of features reaching maturity/GA, and the number of obsolete APIs and deprecated features being removed. Make sure you read the release notes and big congrats to everyone who worked on it!

Last Week In Kubernetes Development

Week ending December 4

Developer News

K8s-infra reminds you to use registry.k8s.io and not older registry addresses.

Developer News

Maintainer Session submissions for KubeCon Amsterdam are now open. If you are a SIG Lead or CNCF project maintainer, you should have received a link for proposals. Now’s the time to meet with your SIG and figure out what you want to do.

Release Schedule

Next Deadline: Release Notes Complete, December 2nd

Developer News

Paris Pittman has retired from the Steering Committee as well as several other roles. Please join us in thanking Paris, who has done more to make Kubernetes an awesome project for contributors than possibly anyone else. She is succeeded on the Steering Committee by Carlos Panato.

Etcd has announced some new data consistency bugs. Please upgrade etcd on your clusters to 3.4.22 or 3.5.6 as soon as you can.

Release Schedule

Developer News

Two new security fixes last week: CVE-2022-3162 allowed custom resources in the same API group eavesdrop on each other; CVE-2022-3294 allowed users to proxy via the API server to addresses they shouldn’t have had access to. Both issues are fixed in the most recent patch releases and upgrading is recommended.

Release Schedule

Next Deadline: Test Freeze / Docs Ready for Review / Release Blog Ready, November 15th

Developer News

Code Freeze is coming, as is a mega-long list of merged changes and graduations.

The python-client developers are considering making major breaking changes, mainly for OpenAPI code. Add your feedback.

Release Schedule

Developer News

Oct. 24 was the Contributor Summit. We started the day with a call to action from Paris & Tabitha, a review of how Japan has hosted their own contributor training, and GitHub staff showing how CodeSpaces for Kubernetes contributors will help people get started.

Here’s some session summaries (links require k8s.io/dev membership):

• Discussed the state of statefulness including the status of features like Taints, PDB, QoS, and slices
• Went over the limitations of kubectl apply and how we might solve them
• SIG-Network wants to run kubemark tests on networking components at large scale
• Apparently Kubernetes API user experience is a mess
• Most people don’t understand the real Pod Lifecycle, and who can blame them?
• Now that Dockershim is gone, it’s time to completely overhaul how CRI works

Developer News

KubeCon North America is now! Please bear with everyone as response times from SIGs and code review may be longer than usual.

Release Schedule

Next Deadline: Exceptions Due, October 31st

Last Week In Kubernetes Development

Week Ending October 16, 2022

Developer News

Registration for the Contributor Summit closes this Thursday. You must be registered to attend the Contributor Social, as well as for the Summit.

Developer News

After being elected to the Steering Committee, Nabarun Pal has stepped down from the Code of Conduct Committee, and Jason DeTiberius will be taking his place.

Registration is still open for the Contributor Summit, but will close next week. Register now if you're coming!

Release Schedule

Developer News

The Steering Committee election is concluded, and Benjamin Elder, Bob Killen, and Nabarun Pal have been elected.

k8s.gcr.io is redirecting to registry.k8s.io; contact BenTheElder, Ameukam, or Thockin if this breaks things.

We’ve removed makefile API generation. If you commit API changes, make sure to run update-codegen.sh before pushing.

Last Week in Kubernetes Development

Week ending September 25, 2022

Developer News

There have been extra patch releases due to a breaking change, see below.

Developer News

Two security reports this week: CVE-2022-3172, which allows aggregated API servers to misdirect traffic and steal credentials, and CVE-2021-25749, which can let users deploy Windows container workloads as Administrator. Both issues are fixed in the latest patch releases. Note that the patch for CVE-2022-3172 blocks all 300ish responses, so test after upgrading and be prepared to set --aggregator-reject-forwarding-redirect if your API server uses redirects.

Votes for the 2022 Steering Election are due September 29th. Please vote now!

The Contributor Summit CfP is still open.

Developer News

The Contributor Summit Detroit (at KubeCon North America 2022) has opened the call for sessions. If you have a discussion topic, workshop, SIG meeting, or anything else by and for contributors, suggest it by September 30. Also, register now so we have a better headcount for allocating space.

Steering committee ballots are due by September 29th. Vote now! If you’re still not on the voter rolls and think you should be (if you’re reading this, you likely qualify) make sure you get your exception request in by September 16th.

Release Schedule

Developer News

Voting for the Steering Committee is open! Please vote by September 30th. If you need an eligibility exception, make sure to apply by September 16th.

If you want to be sure to get a Kubernetes contributor hoodie as part of your Contributor Summit swag, please register for the contributor summit by September 9th so we can order the right amounts.

See below about changes to the Enhancements process.

Last Week In Kubernetes Development

August 28, 2022

Developer News

Registration for the Contributor Summit is open.

Developer News

Registration for the KubeCon North America 2022 Contributor Summit is now open. It will be held on Monday, October 24th, in Detroit as one of the pre-main-event mini-confs. Please register early if you can, so the summit team can get a good attendance estimate for capacity planning.

1.26 Release Team shadow applications are now open. If you're interested in joining the 1.26 team but aren't sure if it's for you, you can chat with anyone in the #sig-release channel on Slack.

Nominations for the Kubernetes Steering Committee are open until August 30. You can nominate yourself (or someone else but please ask them first) by opening an issue on the kubernetes/community repo. Check out the voter guide for more details on the process or reach out to any of the Election Officials.