Kubernetes
- New Feature: Seekable OCI Parallel Pull mode for Amazon EKS
2025-12-04
- New Feature: S3 CSI Driver for EKS Clusters
2025-12-04
- Upgrading EKS clusters to v1.33 + node auto repair feature
2025-11-13
- Upgraded cluster add-ons
2025-09-25
- Upgraded cluster add-ons
2025-08-06
- [ACTION REQUIRED] Bitnami deprecates free container support
2025-07-31
- Upgraded cluster add-ons
2025-07-04
- Loki label optimisations to improve performance, rollout finished
2025-06-25
- Grafana CVE-2025-4123 mitigation
2025-06-10
- Addons migration from OpenTofu to Flux complete and next steps
2025-05-26
- [ACTION REQUIRED] Upgraded cluster add-ons
2025-05-20
- [ACTION REQUIRED] Loki label optimisations to improve performance
2025-05-08
- Upgraded cluster add-ons
2025-04-17
- All clusters patched against IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, CVE-2025-24513, CVE-2025-24514)
2025-03-25
- Upgraded cluster add-ons
2025-03-12
- Migrating from OpenTofu to Flux: A leap forward in our Kubernetes management
2025-03-05
- DockerHub rate limits - system components updated
2025-02-27
- [ACTION REQUIRED] Change in DockerHub rate limits on March 1st 2025
2025-02-21
- Upgrading EKS clusters to v1.32
2025-02-05
- New Dex onboarding docs and support for Google Group scope
2025-01-30
- [ACTION REQUIRED] Upgraded cluster add-ons
2025-01-23
- Upgrading EKS clusters to v1.31
2025-01-07
- Migrated to Tailscale for internal remote access to our managed environments
2024-12-09
- Loki optimisations to mitigate recurring performance issues
2024-12-06
- [ACTION REQUIRED] Upgraded cluster add-ons
2024-12-03
- [ACTION REQUIRED] Upgraded cluster add-ons
2024-09-19
- [ACTION REQUIRED] Upgraded cluster add-ons
2024-08-12
- [ACTION REQUIRED] Upgraded cluster add-ons
2024-07-11
- Upgrading EKS clusters to v1.30
2024-06-19
- Upgraded cluster add-ons - hotfixes
2024-06-13
- Upgraded cluster add-ons
2024-05-23
- Improving self-hoster GitHub Actions runners reliability
2024-05-02
- [Action required] Upgraded cluster add-ons
2024-04-11
- Overhauled EKS access control
2024-04-03
- Upgrading EKS clusters to v1.29
2024-03-28
- Secret envelope encryption enabled on EKS
2024-03-14
- Migration of GitHub actions-runner-controller to gha-runner-scale-set
2024-03-08
- Upgraded cluster add-ons
2024-02-29
- Introducing Thanos as an experimental feature to the k8s reference solution
2024-02-08
- Use direct AWS EKS AMI instead of SkS custom-build
2024-01-22
- Upgraded cluster add-ons
2024-01-19
- Vault upgraded to 1.15.4
2023-12-14
- Upgrading EKS clusters to v1.28
2023-12-05
- Don't notify customers of infra/platform related alerts by default
2023-11-16
- Upgraded cluster add-ons
2023-11-07
- Upgraded cluster add-ons
2023-10-05
- Support for GPU node pools on AWS (EKS)
2023-09-29
- Removed Calico as NetworkPolicies engine - this functionality has merged with the AWS VPC CNI
2023-09-29
- Upgrading K8s clusters to v1.27
2023-09-20
- Disable kubernetes-dashboard by default
2023-07-19
- Upgraded cluster add-ons
2023-07-14
- Upgraded cluster add-ons
2023-07-07
- Dedicated system node pool + reduced system component footprint
2023-07-05
- Upgrading K8s clusters to v1.26
2023-06-22
- Vault upgraded to 1.13.3
2023-06-09
- Post-mortem - A word on Pods stuck with ContainerCreating status problems
2023-05-30
- Upgraded fluent-bit and moving to built-in loki output
2023-05-25
- Upgraded cluster add-ons for monitoring & logging
2023-05-11
- [Action required] Update external-dns behavior for private Route53 zones
2023-05-10
- Upgraded cluster add-ons
2023-05-04
- Istio upgraded to version 1.16.4
2023-04-17
- [Action required] Upgrades starting for K8s clusters to 1.25
2023-03-30
- Istio upgraded to version 1.16.3
2023-03-16
- Vault upgraded to 1.13.0
2023-03-13
- INFO - Empty response for external.metrics.k8s.io/v1beta1 errors with kubectl and helm
2023-03-01
- Post Mortem - Loki log loss
2023-02-28
- Upgraded cluster add-ons
2023-02-20
- Improving Loki performance & scalability
2023-02-13
- Node Termination Handler Slack notifications disabled by default (AWS EKS)
2023-02-03
- Upgraded K8s clusters to 1.24
2023-01-27
- Upgraded cluster add-ons
2022-12-21
- Vault upgraded to 1.12.2
2022-12-13
- New feature: Use External-DNS for managing custom DNS records
2022-12-13
- Istio upgraded to version 1.16.1
2022-12-13
- New feature: Kubernetes descheduler
2022-11-21
- Upgraded cluster add-ons
2022-11-18
- Upgraded K8s clusters to 1.23
2022-11-17
- Upgraded ingress-nginx, fixing CVE-2022-32149, CVE-2022-27664 and CVE-2022-1996
2022-11-10
- Upgraded monitoring add-ons, fixing Grafana CVE-2022-32149
2022-11-09
- Vault upgraded to 1.12.0
2022-10-25
- NLB compatibility in Nginx Ingress
2022-10-17
- Istio upgraded to version 1.15.2
2022-10-17
- Upgraded cluster add-ons
2022-10-06
- Upgraded cluster add-ons
2022-08-10
- Upgraded AKS and EKS clusters to 1.22
2022-07-25
- Upgraded cluster add-ons
2022-07-12
- Calico NetworkPolicy controller upgraded on EKS
2022-06-23
- Major Nginx Ingress Controller upgrade
2022-06-14
- Replacing eventrouter component for persisting K8s events
2022-06-07
- Improving Loki performance and usability
2022-05-25
- Upgraded cluster add-ons
2022-05-12
- [Action required] Final call - Deprecated API removal, upgrade your Ingresses etc.
2022-05-05
- Improved node termination handling (AWS EKS)
2022-04-26
- Add support for GP3 volumes through the AWS EBS CSI driver
2022-04-13
- Internal refactor of monitoring addons
2022-04-08
- Upgrade Nginx Ingress, fixing CVEs
2022-04-04
- Upgrade to Grafana v8 - take 2
2022-04-01
- Istio upgraded to version 1.13.2
2022-03-21
- Vault upgraded to 1.9.4
2022-03-18
- Upgraded cluster add-ons
2022-03-17
- Github Actions Runner Controller
2022-02-07
- AKS rollouts are now automated
2022-02-07
- Calico NetworkPolicy controller upgraded on EKS
2022-02-02
- VPA enabled by for metrics-server
2022-01-28
- Adding support for the AWS Load Balancer controller
2022-01-27
- Standardizing on Fluent Bit and Loki updates
2022-01-21
- VPA enabled for Vault
2022-01-07
- Monitoring for Grafana Loki in case of discarded logs
2021-12-16
- Add support for mixed node pools in EKS
2021-12-16
- Add support for AWS Secrets Manager in EKS
2021-12-10
- Upgraded cluster add-ons
2021-12-06
- Istio upgraded to version 1.12.0
2021-11-25
- Introducing alerts for Fluent Bit errors
2021-11-15
- A note on Let's Encrypt chain issues due to DST Root CA X3 expiry
2021-10-11
- Upgraded cluster add-ons
2021-09-27
- Guaranteed QoS for all critical system and infrastructure Pods
2021-09-27
- Improved EC2 instance interruption notifications
2021-09-20
- Upgrade AKS and EKS clusters to 1.21. Actions to take!
2021-09-16
- Istio upgraded to version 1.11.2
2021-09-13
- VPA enabled by default
2021-09-09
- Downgraded Grafana to v7.5
2021-09-07
- Cert-manager upgraded to 1.4.4
2021-09-06
- Vault upgraded to 1.8.2
2021-08-31
- Vault upgraded to 1.8.1
2021-08-26
- Upgraded cluster components & increased Pod density. Actions to take!
2021-08-10
- Using encryption at rest for Prometheus and Alertmanager
2021-07-19
- Pod Disruption Budget for CoreDNS
2021-07-06
- Using Telepresence in our Reference Solution
2021-06-24
- Support for RabbitMQ and AmazonMQ monitoring
2021-06-10
- Initial support for Milvus database
2021-06-09
- Upgrade AKS and EKS clusters to 1.20
2021-06-04
- Istio dashboards in Grafana
2021-06-03
- Istio upgraded to version 1.10.0
2021-05-27
- Vault upgraded to 1.7.2
2021-05-25
- Upgraded several cluster components
2021-05-18
- Adding support for EFS backed Persistent Volumes in Kubernetes
2021-05-18
- Vault upgraded to 1.7.1
2021-05-11
- Merging AKS and EKS reference solution codebases and improving automation
2021-05-10
- Adding support for Istio service mesh
2021-04-14
- Upgraded several cluster components (patch-level)
2021-04-06
- Vault upgraded to 1.7.0
2021-03-30
- Upgrade AKS and EKS clusters to 1.19
2021-03-30
- Monitoring upgrades
2021-03-23
- Upgraded several cluster components
2021-03-16
- Improved monitoring alerts on Slack
2021-03-10
- Fixed regression in Elasticsearch monitoring for Prometheus
2021-03-05
- You can now use local NVMe Instance Storage with your Pods on EKS
2021-03-04
- Option to run the K8s API private
2021-02-23
- Upgraded several cluster components
2021-02-09
- Auto-assigned Elastic IPs for K8s nodes (optional)
2021-02-05
- Striving for more automation on the K8s reference solution
2021-02-02
- Grafana main dashboard updated
2021-01-26
- Velero S3 backups replication
2021-01-21
- Monitoring upgrades
2021-01-20
- Vault upgraded to 1.6.1
2021-01-12
- Grafana main dashboard updated
2020-12-18
- Upgraded Dex version with security patch
2020-12-15
- New log shipper added - Fluent Bit
2020-12-14
- Configurable default certificate and default backend on nginx-ingress
2020-12-14
- Upgrade EKS to 1.18
2020-12-08
- Fall component upgrades
2020-11-30
- Support for GPU node pools in Azure Kubernetes Service (AKS)
2020-11-18
- Support for Azure Kubernetes Service (AKS)
2020-11-06
- Vault upgraded to 1.5.4
2020-10-12
- Grafana main dashboard updated
2020-09-11
- Vault upgraded to 1.5.3
2020-09-03
- Upgraded several cluster components
2020-09-03
- Feature: NodeLocal DNSCache
2020-09-03
- Monitoring for External-DNS
2020-08-27
- Disable Nginx server token
2020-08-14
- Updates for addons
2020-08-05
- Vault upgraded to 1.5.0
2020-07-22
- Upgrade EKS to 1.17
2020-07-22
- Support Loki log-based alerting and metrics in Grafana
2020-07-10
- Updates for authorization addons
2020-06-18
- Update of ingress-nginx
2020-06-17
- Upgraded monitoring plugins
2020-06-16
- Update of Velero
2020-06-16
- Migrating from kube2iam to IAM roles for Service Accounts (IRSA)
2020-06-16
- Vault upgraded to 1.4.2
2020-06-05
- Upgrade EKS to 1.16
2020-06-05
- Cert-manger updated to 0.15.1
2020-06-05
- Resizable persistent volumes
2020-05-20
- Automated OpenVPN deployments
2020-05-19
- Upgrades to monitoring & logging components
2020-05-13
- Fix Services without Endpoints timeout instead of reject
2020-05-13
- Update of cluster components
2020-04-27
- Upgrade EKS to 1.15
2020-04-16
- Migration to Helm 3
2020-04-10
- Help fight COVID-19 with your Kubernetes cluster
2020-04-01
- Upgrades to monitoring components
2020-03-31
- Cluster addons upgrades
2020-03-27
- Alert and documentation for NodeWithImpairedVolumes
2020-03-27
- Use NetworkPolicies
2020-03-26
- Upgrade of core EKS components
2020-03-26
- Vault on K8s
2020-02-25
- All secret data is now encrypted in our Kubernetes definition files
2020-02-21
- Bugfix - Velero backups failing on some clusters
2020-02-11
- Bugfix - Raise fs.inotify limits
2020-02-11
- Allow runing K8s nodes and Concourse workers in public subnets
2020-01-16
- Bugfix - loki-promtail wasn't scheduled on tainted nodes
2020-01-15
- Bugfix - Grafana instability, increased memory request/limit
2020-01-15
- Spot termination alerts on Slack
2019-12-12
- Improved Prometheus-based ElasticSearch monitoring
2019-12-12
- Fixed Kubernetes cluster-autoscaler ASG auto-detectionn
2019-12-12
- Several other K8s Reference Solution improvemens
2019-12-05
- Kubernetes monitoring upgrades
2019-12-05
- Heavily reduced resource reservations for our default cluster Add-ons
2019-12-05
- Better support for different AWS regions and AZs for our Kubernetes reference solution
2019-12-05
- CVE-2019-11253
2019-10-17
- Improved Kubernetes clusters automation
2019-09-30
- Upgrade EKS to 1.14
2019-09-25
- Upgrade Calico to 3.8.2
2019-09-24
- Upgrade kops-based clusters to Kubernetes 1.11.10
2019-09-05
- Upgrade to EKS 1.13
2019-09-02
- Prometheus-blackbox-exporter available as optional cluster addon
2019-08-29
- Redshift monitoring via Prometheus
2019-08-28
- Neo4j monitoring via Prometheus
2019-08-26
- Fix for dashboards HTTP 500 error when refreshing token
2019-08-20
- A note on CVE-2019-11247
2019-08-19
- Kubernetes dashboards ERR_TOO_MANY_REDIRECTS bug
2019-08-12
- Kubernetes add-on upgrades
2019-08-06
- We're moving to EKS
2019-08-01
- Cluster and Persistent Volume backups with Velero 1.0
2019-07-16
- SSO / OAuth2 overhaul
2019-07-09
- Move to the AWS provided Kibana
2019-04-17
- Update kube2iam to 0.10.7
2019-04-16
- Increased monitoring alerts visibility
2019-04-08
- Upgrade to Kubernetes 1.11.9 [CVE-2019-1002100, CVE-2019-9946, CVE-2019-3874, CVE-2019-1002101]
2019-03-29
- Create simple AWS resources from K8s via the AWS Service Operator
2019-03-19
- Support for cronjob monitoring
2019-03-18
- Upgrade Kubernetes components
2019-03-06
- Improved monitoring alerts on Slack
2019-03-06
- Mongodb monitoring and dashboards
2019-02-21
- Improved etcd backups
2019-02-19
- CVE-2019-5736 - Rolling out patched runc
2019-02-18
- Use encrypted EBS volumes for etcd storage and (optionally) encrypt k8s node root volumes
2019-01-21
- Move to CoreDNS dns server and add gp2-encrypted StorageClass
2019-01-15
- Upgrade to Kubernetes 1.11.6 [updated]
2019-01-03
- Upgrade to Kubernetes 1.10.11 [updated]
2018-12-03
- Set resource reservations for kubelet and other system processes
2018-11-27
- Updated Prometheus & Grafana monitoring stack - update
2018-11-21
- Updated Prometheus & Grafana monitoring stack
2018-11-19
- Set resource requests and limits for all infrastructure pods
2018-11-13
- Moving from kube-lego to cert-manager for automatic TLS certificates
2018-11-13
- Grafana Pods dashboard updated memory metrics
2018-11-05
- Releasing our user-level documentation repository
2018-10-30
- K8S upgrade to stretch
2018-10-23
- Teleport upgrade to 2.7.5
2018-09-28
- Kubernetes cluster-autoscaler enabled
2018-09-28
- Reduced number of NAT gateways
2018-09-25
- Kubernetes Infrastructure Tools Upgraded
2018-09-25
- Upgrade logging to Kibana and Elasticsearch 6.3
2018-09-20
- Upgrade to Kubernetes 1.10
2018-09-12
- Added AWS Inspector on Kubernetes cluster nodes
2018-08-25
- Velero backups
0001-01-01
- Useful tools
0001-01-01
- Use AWS Secrets Manager secrets in Kubernetes
0001-01-01
- Role Based Access Control
0001-01-01
- Pods
0001-01-01
- Kubernetes
0001-01-01
- Helm
0001-01-01
- Dynamic, whitelabel-style Ingress to your application
0001-01-01
- DockerHub
0001-01-01
- Authentication
0001-01-01