Kubernetes Ingress
A Kubernetes resource that tells the cluster how to route incoming web traffic from outside to the right internal Service using rules like hostnames and paths.
Networking
DevOps Glossary
Discover and learn all DevOps terms starting with K here.
Kubernetes Operators
Kubernetes-native controllers that run an app for you by automating deploys, configuration, and ongoing operations using custom resources.
Container Orchestration
Karpenter
Automates node scaling in Kubernetes clusters.
Infrastructure Management
KRO
KRO orchestrates related Kubernetes resources as one unit using templates and rules to standardize platform deployments.
Container Orchestration
Kubernetes
Open source container orchestration platform that deploys, scales, and manages containerized applications across clusters.
Container Orchestration
Kubernetes Network Policy
Rules that say which pods in a Kubernetes cluster are allowed to talk to which other pods or services over the network.
Networking
Kubernetes Pod Security Standards (PSS)
Built-in Kubernetes security levels that restrict what pods can do, like running as root or using privileged access.
Security
Kubernetes Admission Controller
Kubernetes Admission Controller checks API calls to allow, change, or deny cluster changes before saving them.
Container Orchestration
Kubernetes Service
A Kubernetes Service is a stable network endpoint that exposes pods and routes traffic within or outside a cluster.
Container Orchestration
Kubernetes NetworkPolicy
Kubernetes NetworkPolicy sets rules for pod traffic in a cluster, controlling which pods can connect to other pods.
Container Orchestration
Kubernetes RBAC
Kubernetes RBAC controls which users, groups, or service accounts can perform actions on cluster resources to limit access.
Authentication and Authorization
Kubernetes StatefulSet
Kubernetes StatefulSet is a workload API object for stateful pods, giving each pod stable identity and storage.
Container Orchestration
Kubernetes Operator
A Kubernetes Operator is a controller that automates app lifecycle management in a cluster using custom resources.
Container Orchestration
Kubernetes DaemonSet
Kubernetes DaemonSet is a workload API object that runs one pod on each selected node for cluster-wide node agents.
Container Orchestration
Kubernetes Deployment
A Kubernetes Deployment is a workload API object that manages replicated pods and rolling updates in a cluster.
Container Orchestration
Kubernetes ConfigMap
A Kubernetes ConfigMap is an API object storing non-sensitive configuration for pods, separate from container images.
Container Orchestration
Kubernetes Secret
A Kubernetes Secret is an API object for sensitive data, such as tokens or passwords, used by pods.
Secrets Management
Kubernetes PersistentVolume (PV)
A Kubernetes PV is a cluster storage resource that lets pods keep data beyond restarts through bound claims.
Container Orchestration
Kubernetes Pod
A Kubernetes Pod is the smallest deployable cluster unit, running one or more containers that share a network.
Container Orchestration
Kubernetes PersistentVolumeClaim (PVC)
A PersistentVolumeClaim (PVC) is a storage request that binds a pod to a PersistentVolume for durable data.
Container Orchestration
Kubernetes CronJob
A Kubernetes CronJob creates Jobs on a schedule to automate recurring tasks inside a cluster, like backups or cleanup.
Container Orchestration
Kubernetes Job
A Kubernetes Job runs one or more pods to completion for finite tasks, such as batch processing inside a cluster.
Container Orchestration
Kubernetes ServiceAccount
A Kubernetes ServiceAccount is an identity for pods to authenticate to the API server and access cluster resources.
Authentication and Authorization
Kubernetes Liveness Probe
A Kubernetes liveness probe checks whether a container is alive and restarts it when the app stops responding.
Container Orchestration
Kubernetes Readiness Probe
A Kubernetes readiness probe checks whether a pod is ready for traffic before adding it to Service endpoints.
Container Orchestration
Kubernetes Init Container
A Kubernetes init container runs before app containers in a pod to prepare dependencies, config, or setup tasks.
Container Orchestration
Kubernetes Node
A Kubernetes Node is a worker machine in a cluster that runs pods and provides CPU, memory, and networking for workloads.
Container Orchestration
Kubernetes Namespace
A Kubernetes Namespace is a logical partition in a cluster used to group resources and scope access, policies, or quotas.
Container Orchestration
Kubernetes ReplicaSet
A Kubernetes ReplicaSet keeps a set number of matching pods running in a cluster, replacing failed ones as needed.
Container Orchestration
Kubernetes Taints and Tolerations
Kubernetes taints and tolerations control scheduling by marking nodes and allowing only matching pods to run there.
Container Orchestration
Kubernetes Resource Requests and Limits
Kubernetes resource requests and limits set pod CPU and memory needs and caps, guiding scheduling and capping use.
Container Orchestration
Kubernetes StorageClass
Kubernetes StorageClass defines volume provisioning settings for PVCs, letting teams request storage by class.
Container Orchestration
Kubernetes Custom Resource Definition (CRD)
Kubernetes CRD extends the Kubernetes API with custom resource types, letting teams manage cluster or app state declaratively.
Container Orchestration
Kubernetes EndpointSlice
Kubernetes EndpointSlice groups Service endpoints into slices so controllers and proxies can route traffic to pods.
Container Orchestration
Kubernetes Volume
Kubernetes Volume is a storage resource attached to a pod, used to persist or share data across containers.
Container Orchestration
Kubernetes Gateway API
Kubernetes Gateway API defines Kubernetes resources for managing service traffic routing into clusters with gateway, route, and policy objects.
Networking
Kubernetes Pod Security Admission
Kubernetes Pod Security Admission checks pod specs against Pod Security Standards before create or update.
Security
Kubernetes ResourceQuota
Kubernetes ResourceQuota is a namespace limit for CPU, memory, storage, and objects that controls cluster use.
Container Orchestration
Kubernetes ClusterRole
Kubernetes ClusterRole is a cluster-wide RBAC role that defines access to namespace and cluster resources.
Authentication and Authorization
Kubernetes RoleBinding
Kubernetes RoleBinding assigns a Role’s namespace permissions to users, groups, or service accounts for RBAC control.
Authentication and Authorization
Kubernetes ClusterRoleBinding
Kubernetes ClusterRoleBinding maps a ClusterRole to users, groups, or service accounts for cluster-wide RBAC access.
Authentication and Authorization
Kubernetes PodDisruptionBudget (PDB)
Kubernetes PodDisruptionBudget (PDB) limits voluntary pod evictions so a minimum number or percentage stays available.
Container Orchestration
Kubernetes HorizontalPodAutoscaler (HPA)
Kubernetes HPA automatically scales pod replicas based on metrics like CPU to match application demand.
Container Orchestration
Kubernetes VerticalPodAutoscaler (VPA)
Kubernetes VerticalPodAutoscaler (VPA) adjusts pod CPU and memory requests based on workload usage for better scheduling.
Container Orchestration
Kubernetes PriorityClass
Kubernetes PriorityClass sets pod priority, allowing critical workloads to preempt lower-priority pods when cluster resources are scarce.
Container Orchestration
Kubernetes Pod Affinity and Anti-Affinity
Kubernetes Pod Affinity and Anti-Affinity are scheduling rules that place pods together or apart using labels and topology.
Container Orchestration
Kubernetes Pod Topology Spread Constraints
Kubernetes Pod Topology Spread Constraints are scheduler rules that spread pods across zones or nodes to cut skew.
Container Orchestration
Kubernetes ValidatingAdmissionPolicy
Kubernetes ValidatingAdmissionPolicy validates API requests with CEL rules before storage as admission control.
Container Orchestration
Kubernetes MutatingAdmissionWebhook
Kubernetes MutatingAdmissionWebhook is a webhook that edits API requests before storage to set defaults or labels.
Container Orchestration
Kubernetes ValidatingAdmissionWebhook
Kubernetes ValidatingAdmissionWebhook is an admission webhook that accepts or rejects API requests before storage.
Container Orchestration
Kubernetes SecurityContext
Kubernetes SecurityContext defines Pod or container security settings, controlling runtime privileges, user IDs, and Linux capabilities.
Security
Kubernetes Role
Kubernetes Role is a namespaced RBAC object that defines allowed actions on resources, applied through RoleBindings.
Authentication and Authorization
Kubernetes Labels and Selectors
Kubernetes labels are key-value tags on objects, and selectors match them to group Pods for services or controllers.
Container Orchestration
Kubernetes CustomResourceDefinition (CRD)
A Kubernetes CustomResourceDefinition (CRD) adds a custom API resource type to a cluster for domain-specific objects.
Container Orchestration
Kubernetes VolumeSnapshot
A Kubernetes VolumeSnapshot captures a point-in-time PVC copy for backup, restore, or storage cloning workflows.
Container Orchestration
Kubernetes IngressClass
Kubernetes IngressClass links an Ingress to the controller that routes outside traffic for cluster services.
Container Orchestration