The signal
through the noise.

Kubernetes v1.36 introduces the graduation of In-Place Pod-Level Resources Vertical Scaling to Beta. This feature allows developers to modify the aggregate resource budget (`.spec.resources`) of a running Pod, enabling...

Cloudflare and Stripe have introduced a new protocol within Stripe Projects that enables AI agents to autonomously provision Cloudflare infrastructure. This allows agents to create Cloudflare accounts, register domains,...

Kubernetes v1.36 introduces new features designed to mitigate controller staleness and improve the observability of controller behavior. These updates allow controllers to detect when their local cache is outdated...

Kubernetes v1.36 introduces User Namespaces at General Availability (GA) for Linux-only environments. This feature enables rootless security isolation by decoupling container user identities from the host, preventing...

Kubernetes is transitioning the `SELinuxMount` feature gate to be enabled by default, an update anticipated for version 1.37. This change replaces the resource-intensive recursive relabeling of volume files with a more...

Recent updates to `wasm-bindgen` and the Rust Workers runtime introduce mechanisms to recover from Rust panics and WebAssembly aborts. These improvements prevent a single failed request from poisoning the WebAssembly...

Kubernetes v1.36 introduces 70 enhancements, including 18 features graduating to Stable, 25 entering Beta, and 25 entering Alpha. The release focuses on refining API authorization, improving hardware resource...

Cloudflare has deployed an internal AI engineering stack built entirely on its own production infrastructure, including AI Gateway, Workers AI, and Cloudflare Access. This architecture supports over 3,600 internal users...

Cloudflare has launched a suite of infrastructure primitives designed to support the "agentic cloud," focusing on the unique compute, security, and memory requirements of autonomous AI agents. The updates provide...

Unweight is a lossless compression system designed to reduce LLM weight size and alleviate memory bandwidth bottlenecks during inference on NVIDIA H100 GPUs. By compressing the exponent bytes of BF16 weights, the system...

Cloudflare has announced the private beta of Agent Memory, a managed service designed to provide persistent, retrieval-based memory for AI agents. The service addresses the "context rot" problem by extracting and...

Cloudflare is expanding its AI platform into a unified inference layer, providing a single API to access models from various third-party providers. This update enables developers to manage multi-model workflows,...

Cloudflare has implemented several architectural optimizations to the Workers AI infrastructure to support the deployment of extra-large language models, such as Kimi K2.5. These updates focus on decoupling...

Kubernetes v1.36, scheduled for release on April 22, 2026, introduces significant API removals, the retirement of the Ingress NGINX project, and advancements in Dynamic Resource Allocation (DRA). These updates focus on...

The Agent Sandbox project, developed under Kubernetes SIG Apps, introduces a new abstraction for managing long-running, stateful AI agent workloads on Kubernetes. It provides a standardized API via a Custom Resource...

The release of Ingress2Gateway 1.0 provides a stable migration assistant for transitioning Kubernetes networking from Ingress-NGINX to the Gateway API. The tool automates the translation of Ingress resources and...

This architecture replaces broad, long-lived production access—such as cluster-admin privileges and shared bastion hosts—with a secure, just-in-time (JIT) debugging workflow. It utilizes an access gateway and...

Kubernetes is retiring the Ingress-NGINX controller in March 2026, requiring a migration to alternative solutions such as the Gateway API. This transition is high-risk because Ingress-NGINX utilizes non-standard...

Kubernetes v1.35 introduces a new security feature in the `kuberc` configuration that allows users to restrict which executables can be invoked by `kubeconfig` credential plugins. This mechanism mitigates supply-chain...

Kubernetes v1.35 introduces the `RestartAllContainers` alpha feature, which enables the in-place restart of all containers within a Pod without requiring the Pod to be deleted and recreated. This mechanism allows for a...

Kubernetes v1.35 introduces workload-aware scheduling features designed to manage multi-Pod applications, such as machine learning batch jobs, more efficiently. The update implements the new Workload API and gang...

Kubernetes v1.35 marks the graduation of the In-Place Pod Resize feature to Stable (GA). This feature allows for the modification of CPU and memory requests and limits within a running Pod, eliminating the requirement...

Kubernetes v1.35 introduces 60 enhancements, consisting of 17 stable, 19 beta, and 22 alpha features. This release focuses on improving resource management efficiency, automating workload identity, and enhancing...

Kubernetes v1.35 introduces critical breaking changes, including the removal of cgroup v1 support and the end of support for containerd v1.x. The release also features significant functional advancements, such as the...

Kubernetes SIG Network and the Security Response Committee have announced the retirement of the Ingress NGINX controller due to unsustainable maintenance and security challenges. Best-effort maintenance will continue...