Learn Kubernetes Weekly issue 148

No more CPU, Capacity Planning, Updates to Container Lifecycle, GitOps and vCluster, Carbon-Aware Scheduling with Liqo and Karmada

10 Sept 2025

This issue is brought to you by Testkube - your app is Kubernetes-native, your testing should be too. Run any kind of test automation with the help of the platform built for it.

Articles

1. Everything was fine until Kubernetes said ‘No more CPU’

   Gowtham Sai

   In this case study, you'll learn why Go services in Kubernetes can experience latency issues when GOMAXPROCS defaults don't match actual CPU allocations, and how to prevent these problems through explicit configuration and metric monitoring.

2. Kubernetes Capacity Planning: Getting It Wrong Is Step One (And That’s Okay!)

   Jeremy Castle

   This article explains how to learn foundational concepts and formulas for Kubernetes capacity planning, including node sizing, scaling strategies, and workload categorization.

3. Kubernetes v1.33: Updates to Container Lifecycle

   This article covers two Kubernetes v1.33 container lifecycle updates:

   1. Sleep actions now support zero-second durations by default
   2. Specify custom stop signals directly in Pod specs instead of rebuilding container images

4. From CI to Kubernetes Catalog: Building a Composable Platform with GitOps and vCluster

   Artem Lajko

   This article explains how to build a composable Internal Developer Platform on Kubernetes using a modular, three-layer approach with tools like vCluster, Helm, and GitOps.

5. Orchestrating a Greener Cloud: Carbon-Aware Kubernetes Scheduling with Liqo and Karmada

   alessandro chiarini

   This article explains how to implement carbon-aware Kubernetes scheduling using Liqo for serverless functions and Karmada for container workloads to reduce emissions.

6. Why Kube-State-Metrics Matters for Kubernetes Observability

   Shashi

   This article explains how to deploy and use Kube-State-Metrics to monitor Kubernetes object states via Prometheus for cluster observability.

Keep your existing API testing tool. Run it at scale in Kubernetes

Testkube turns hours of sequential tests into minutes of parallel execution.

Whether you’re handling 1M+ requests, managing air-gapped deployments, or scaling browser tests, Testkube orchestrates it all in Kubernetes.

Learn more

Tutorials

1. Metrics Server and HPA in Kubernetes

   Chetan Atole

   This tutorial teaches how to implement pod autoscaling in Kubernetes using the Metrics Server to collect metrics and the Horizontal Pod Autoscaler (HPA) to scale deployments.

2. Test Orchestration: You're Doing It, You Just Don’t Know It

   Decoupling test logic from CI/CD pipelines is the difference between brittle, one-off scripts and a scalable, developer-friendly testing strategy. This guide explains why duct-taped CI/CD scripts don’t scale and how purposeful orchestration unlocks sustainable Continuous Testing.

   sponsored

3. Launch Kubernetes job on-demand with Python

   Stefano Passador

   This tutorial teaches how to trigger Kubernetes jobs programmatically using a Python application deployed in-cluster that creates and deletes job objects via the Kubernetes API.

4. Securing Kubernetes Resources Without a VPN

   Brian Sizemore

   This tutorial shows how to restrict access to Kubernetes services without a VPN using oauth2-proxy with ingress-nginx.

5. No More Hardcoded Secrets: Automatic Database Credential Rotation with Vault, AKS and Postgres

   Poojan Mehta

   This tutorial sets up Vault's database secrets engine in AKS to generate short-lived Postgres credentials on demand, using ExternalSecrets and VaultDynamicSecret to sync them into native Kubernetes Secrets.

Kubernetes jobs

1. • Site Reliability Engineer with Cognizant

   • Salary: $130K to $160K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Shell, Python, SQL, SQL Server, PostgreSQL

2. • Software Engineer with Replicated

   • Salary: $153.5K to $206.5K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, On-premise, Helm, Go, Javascript, Typescript, Puppet

3. • DevSecOps Engineer with Dark Wolf Solutions

   • Salary: $130K to $145K a year

   • Location: based in the office (and remote from home) in College Park, MD, USA

   • Tech stack: Kubernetes, On-premise, Terraform, Ansible, ELK

4. • Platform Engineer with Invisible Technologies

   • Salary: $240 a day

   • Location: fully remote

   • Tech stack: Kubernetes, GCP, Docker, Python, GraphQL, Javascript, Redis, RabbitMQ

5. • Site Reliability Engineer with Axon

   • Salary: $134.25K to $214.8K a year

   • Location: based in the office (and remote from home) in Atlanta, GA, USA

   • Tech stack: Kubernetes, AWS, Azure, Go, Python, Java, C#

Discover more Kubernetes jobs on Kube Careers →

Code & tools

1. werf: full cycle CI/CD

   werf

   Werf is a CLI tool for full-cycle CI/CD to Kubernetes.

   It supports complete application lifecycle management, including building, publishing, and deploying container images, and offers features like automatic build caching.

2. Keel: Kubernetes Deployment Automation Engine

   keel-hq

   Keel is a Kubernetes Operator to automate Helm, DaemonSet, StatefulSet & Deployment updates.

3. Smesh: Lightweight Kubernetes-Integrated Sidecar Mesh Without Proxies

   thebsdbox

   smesh is a proof-of-concept service mesh for Kubernetes that utilizes eBPF to intercept and redirect pod traffic to a sidecar proxy.

4. k8skonf: Kubernetes in Typescript

   konfjs

   K8skonf is a TypeScript-based toolkit that simplifies the process of building, deploying, and managing Kubernetes applications.

   It provides a more intuitive and easier-to-use API than traditional CDK8s and Helm.

5. KubeTidy

   KubeTidy helps you clean, merge, and optimize your Kubernetes configurations effortlessly.

Other interesting projects:

• kcp: isolated workspaces

• Telepresence: code against remote clusters

• kclipper: declarative helm management

• k8sgpt: Kubernetes analyzer

• KubernetesEnumerationTool: Offensive and Defensive Audit Toolkit

• R0binak/xzk8s

• Blixt: Experimental Rust-Based eBPF Load Balancer

• kuik: container image caching system

• Zarf: airgapped installation

• Jobnik: RESTful Triggering and Monitoring of Kubernetes Jobs

Upcoming Kubernetes events

1. Sept

   10

   GPU Enabled Platforms Overview

   Online webinar organized by vCluster Labs + LearnKube.

   • This is a virtual event

   • This is a free event.

2. Sept

   15

   Advanced Kubernetes course (Singapore)

   In-person workshop organized by Learnk8s.

   • Location: Singapore, SG

   • This event requires an entrance fee

3. Sept

   16

   Kubernetes Community Washington DC 2025

   In-person conference organized by KCD Washington DC.

   • Location: Washington, D.C., USA

   • This event requires an entrance fee

4. Sept

   17

   JVM, Kubernetes and High Load: A Criminal Case

   In-person meetup organized by tech&talk Frankfurt.

   • Location: Frankfurt am Main, DE

   • This is a free event.

5. Sept

   18

   Kubernetes Community Days Sofia 2025

   In-person conference organized by KCD Sofia.

   • Location: Sofia, BG

   • This event requires an entrance fee

6. Sept

   18

   Advanced Kubernetes course

   Online workshop organized by Learnk8s.

   • This is a virtual event

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. expired

   GitOpsCon North America

   The Call For Paper was open until 14 September 2025 at UTC. More info →

   • This is a virtual event

   • Online conference organized by CNCF.

   • The conference starts on the 4 December 2025.

   • Apply here

2. 25

   days

   KubeCon + CloudNativeCon Europe 2026

   The Call For Paper is open until 12 October 2025 at UTC. More info →

   • Location: Amsterdam, NL

   • In-person conference organized by Linux Foundation.

   • The conference starts on the 23 March 2026.

   • Apply here

3. 4

   days

   KCD Hangzhou + OpenInfra China Day 2025

   The Call For Paper is open until 21 September 2025 at UTC. More info →

   • Location: Hangzhou, CN

   • In-person conference organized by KCD Hangzhou.

   • The conference starts on the 15 November 2025.

   • Apply here

4. expired

   CozySummit Virtual 2025

   The Call For Paper was open until 14 September 2025 at UTC. More info →

   • This is a virtual event

   • Online conference organized by CNCF.

   • The conference starts on the 3 December 2025.

   • Apply here

5. 46

   days

   Devopsdays Los Angeles

   The Call For Paper is open until 2 November 2025 at UTC. More info →

   • Location: Los Angeles, CA, USA

   • In-person conference organized by Devopsdays.

   • The conference starts on the 7 March 2025.

   • Apply here

6. expired

   Devopsdays Bogotá

   The Call For Paper was open until 16 September 2025 at UTC. More info →

   • Location: Bogotá, CO

   • In-person conference organized by Devopsdays.

   • The conference starts on the 14 October 2025.

   • Apply here

7. 14

   days

   Devopsdays Wollongong

   The Call For Paper is open until 1 October 2025 at UTC. More info →

   • Location: Wollongong, AU

   • In-person conference organized by Devopsdays.

   • The conference starts on the 26 November 2025.

   • Apply here

8. expired

   Women in Tech Summit Kenya 2025

   The Call For Paper was open until 14 September 2025 at UTC. More info →

   • Location: Nairobi, KE

   • In-person conference organized by WIT.

   • The conference starts on the 22 November 2025.

   • Apply here

9. 43

   days

   Devopsdays Porto Alegre

   The Call For Paper is open until 31 October 2025 at UTC. More info →

   • Location: Porto Alegre, BR

   • In-person conference organized by Devopsdays.

   • The conference starts on the 29 November 2025.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!