Learn Kubernetes Weekly issue 139
Securing Kubernetes with honeypots, Autoscaling My MacBook Screen Lock, Ingress production incident, Stop Treating YAML Like a String
9 Jul 2025
This newsletter is brought to you by Densify — Slash costs, improve reliability and spend less time managing Kubernetes.
Articles
Securing Kubernetes using honeypots to detect and prevent lateral movement attacks
Mario Candela
Learn how Beelzebub runs honeypots inside your Kubernetes cluster to detect lateral movement.
It fakes real services, captures attacker commands like docker ps or ls, and logs them for analysis via Grafana or fluentd.
Scaled Kubernetes Resource Management Requires Cross-Team Collaboration
Efficient Kubernetes resource management at scale demands true collaboration between developers, platform engineers, SREs, and FinOps.
Learn how sharing this responsibility can make all the difference in optimizing cost and stability.
sponsored
Goodbye Wasted Compute: How I Taught Kubernetes to Autoscale with My MacBook Screen Lock
Brian Donelan
This article shows how to autoscale non-prod Kubernetes workloads by syncing MacBook screen lock status to AWS CloudWatch, then triggering KEDA to scale pods and Karpenter to shrink compute.
Our last Kubernetes ingress production incident — explained in 5 minutes
Lorenz Hofmann-Wellenhof
This article analyzes a real-world Kubernetes incident where enabling enable-serial-reloads in NGINX Ingress blocked dynamic endpoint updates during rollouts.
Stop Treating YAML Like a String
Robert Kluin
Koreo is a Kubernetes-native engine that replaces Helm-style string templates with real data structure overlays.
This post will teach you how to manage YAML updates as code.
Mastering complex workloads with Kubernetes JobSet and GKE metrics
Felipe Martinez
This article shows how JobSet simplifies orchestrating complex batch workloads like ML and HPC on Kubernetes by grouping replicated jobs under one spec.
Articles worth checking out:
Slash Cost, Improve Reliability & Eliminate Manual Effort
Densify's Kubex is an AI engine for Kubernetes that analyzes resource usage at every layer—from node to pod to container—enabling precise optimization and intelligent scaling you can confidently automate.
Tutorials
Automating Kubernetes Resource Optimization: Strategies for Efficient, Scalable Workloads
This article explores how automating Kubernetes resource optimization boosts performance, scalability, and cost-efficiency.
Compares the approaches across native Kubernetes and vendors that focus on Kubernetes optimization.
sponsored
Importance of Traces in Event-Driven Architecture and Benefits of the OpenTelemetry Operator
Taffarel de Lima Oliveira
This article walks through end-to-end distributed tracing in Kafka-based event-driven systems using the OpenTelemetry Operator on Kubernetes.
IaC for Generative AI: LLM JupyterLab on Kubernetes
Sinan Ozel
This article showcases a cost-optimized and fully automated IaC-based workflow for deploying GPU-enabled JupyterLab environments on AWS EKS for GenAI workloads.
Kubernetes jobs
Site Reliability Engineer with CADDi
Salary: $100K to $150K a year
Location: based in the office (and remote from home) in Chicago, IL, USA
Tech stack: Kubernetes, AWS, Azure, GCP, ArgoCD, Docker, Go, Shell, Python, Terraform
Data Engineer with Kraken
Salary: $127K to $203K a year
Location: remote from the United States, Canada, Brazil
Tech stack: Kubernetes, AWS, Python, SQL, Airflow
Software Engineer with Mux
Salary: $188K to $200K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, Go, Javascript, C++, C, Redis, Kafka, Grafana, Prometheus
DevOps Engineer with Inkitt
Salary: $70K to $90K a year
Location: remote from Mexico
Tech stack: Kubernetes, AWS, GCP, Redis, PostgreSQL, Elastic Search, Prometheus
Software Engineer with F5, Inc.
Salary: $128.1K to $192.15K a year
Location: based in the office (and remote from home) in Boulder, CO / Seattle, WA, USA
Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Go, Python, Rust, C++
Discover more Kubernetes jobs on Kube Careers →
Code & tools
davidb/kubectl-view-allocations
kubectl-view-allocations is a kubectl plugin that lists allocations for resources (CPU, memory, GPU, etc.) as defined in the manifest of nodes and running pods.
Skaffold: easy and repeatable Kubernetes development
Skaffold is a command line tool that facilitates continuous development for Kubernetes applications.
You can iterate on your application source code locally and then deploy it to local or remote Kubernetes clusters.
Headlamp is an easy-to-use and extensible Kubernetes web UI.
Liqo: multi-cluster topologies
Liqo is an open-source project that enables dynamic and seamless Kubernetes multi-cluster topologies, supporting heterogeneous on-premise, cloud and edge infrastructures.
Popeye is a utility that scans live Kubernetes clusters and reports potential issues with deployed resources and configurations.
It detects misconfigurations and helps you to ensure that best practices are in place.
Other interesting projects:
Upcoming Kubernetes events
Jul
9
Kubeflow Virtual Planning Symposium 2025
Online conference organized by Virtual Project Events (Hosted by CNCF).
This is a virtual event
This is a free event.
Jul
9
Root Cause Analysis in Kubernetes, GitOps & Argo CD
In-person meetup organized by Cloud Native Boston.
Location: Boston, MA, USA
This is a free event.
Jul
10
In-person conference organized by DevBcn.
Location: Barcelona, ES
This event requires an entrance fee
Use KUBE-10 to get 10% off
Jul
11
WeAreDevelopers World Congress 2025
In-person conference organized by WeAreDevelopers.
Location: Berlin, DE
This event requires an entrance fee
Use WWC25_Kube10 to get 10% off
Jul
11
Lessons learned from managing GPU deployments on Kubernetes
In-person meetup organized by Cloud Native Silicon Valley.
Location: Palo Alto, CA, USA
This is a free event.
Sept
15
Advanced Kubernetes course (Singapore)
In-person workshop organized by Learnk8s.
Location: Singapore, SG
This event requires an entrance fee
Discover more Kubernetes events on Kube Events →
Kubernetes Call for Papers
10
days
Kubernetes Community Days Sri Lanka 2025
The Call For Paper is open until 4 August 2025 at UTC. More info →
Location: Colombo, LK
In-person conference organized by KCD Sri Lanka.
The conference starts on the 26 October 2025.
- Apply here
6
days
The Call For Paper is open until 1 August 2025 at UTC. More info →
Location: Sydney, AU
In-person conference organized by Cloud Native Sydney.
The conference starts on the 9 September 2025.
- Apply here
6
days
The Call For Paper is open until 1 August 2025 at UTC. More info →
Location: Bergen, NO
In-person conference organized by Cloud Native Bergen.
The conference starts on the 28 October 2025.
- Apply here
8
days
The Call For Paper is open until 3 August 2025 at UTC. More info →
Location: Austin, TX, USA
In-person conference organized by TXLF.
The conference starts on the 4 October 2025.
- Apply here
9
days
The Call For Paper is open until 4 August 2025 at UTC. More info →
Location: Tokyo, JP
In-person conference organized by Linux Foundation.
The conference starts on the 10 December 2025.
- Apply here
22
days
The Call For Paper is open until 16 August 2025 at UTC. More info →
Location: Detroit, MI, USA
In-person conference organized by Devopsdays.
The conference starts on the 22 October 2025.
- Apply here
5
days
The Call For Paper is open until 31 July 2025 at UTC. More info →
Location: San José, CR
In-person conference organized by DC11506.
The conference starts on the 19 October 2025.
- Apply here
52
days
The Call For Paper is open until 16 September 2025 at UTC. More info →
Location: Bogotá, CO
In-person conference organized by Devopsdays.
The conference starts on the 14 October 2025.
- Apply here
20
days
The Call For Paper is open until 14 August 2025 at UTC. More info →
Location: Ljubljana, SI
In-person conference organized by Devopsdays.
The conference starts on the 13 September 2025.
- Apply here
Until next time!
— Dan
Subscribe and, every Wednesday, receive the latest Kubernetes news!