Stay up-to-date on Kubernetes development in 15 minutes a week.
Next Deadline: Exceptions due, March 21st
While folks are working on features, CI signal has gotten worse. Currently there are 14 flaky jobs between master-informing and master-blocking, and there’s even one failing master-blocking job. This is not a good trend. Please have a look at the problem tests and see if you can help.
The cherry-pick deadline for the next patch releases is March 11th.
As discussed a few weeks ago, the efforts to remove Secret-based storage of ServiceAccount tokens is continuing. Now ServiceAccount objects will not get a token generated an crammed into a Secret by default. This won’t affect usage by Pods, which generate a bound token and store it only in-memory on the Kubelet/host-system, but if you are using service account tokens for things like remote access, you will need to make sure you set up your Secrets appropriately, by adding a
The older alpha and beta object versions of the audit log data format have been removed. This applies to both the file logging and audit webhooks. If you are still using them, upgrading to v1 should be relatively straightforward. Check for any usage of the removed
Timestamp fields, switching to
kubectl versionwon’t take extra arguments
--target-ram-mbflag and the [
--experimental-encryption-provider-configflag] are removed
Last Week In Kubernetes Development (LWKD) is a product of multiple contributors participating in Kubernetes SIG Contributor Experience. All original content is licensed Creative Commons Share-Alike, although linked content and images may be differently licensed. LWKD does collect some information on readers, see our privacy notice for details.
You may contribute to LWKD by submitting pull requests or issues on the LWKD github repo.