Jorijn Schrijvershof

User namespaces graduated stable in Kubernetes 1.36: pod-level isolation without gVisor

https://jorijn.com/en/blog/kubernetes-user-namespaces-pod-isolation-without-gvisor/

#Kubernetes #DevOps #CloudNative #jorijncom

User namespaces graduated stable in Kubernetes 1.36: pod-level isolation without gVisor | Jorijn Schrijvershof

Kubernetes 1.36 makes user namespaces GA. How UID remapping isolates pods, what breaks, runtime requirements, and how it compares to gVisor and Kata Containers.

Apr 14 at 10:54amWeb