The series finale of our five-part Platform Engineering 2026 Look Forward Series. We synthesize everything from agentic AI operations, mainstream adoption, developer experience metrics, and boring Kubernetes into ten concrete predictions for 2026. Learn what to invest in versus ignore, and discover our 2026 platform engineering thesis. In this episode:- High confidence predictions: IDP market consolidates into 3 tiers, AI-assisted operations becomes table stakes, policy-as-code becomes table stakes- Medium confidence predictions: Talent gap peaks H1 2026 then stabilizes, "Platform team of one" becomes technically viable- INVEST IN: Developer experience measurement, self-service capabilities, golden paths, AI-assisted incident response- 2026 thesis: Invisible infrastructure, measurable experience, AI-augmented (not AI-replaced), product thinking 📰 News Segment:• KEDA v2.18.3 & v2.17.3 releases• Google Agent Development Kit for TypeScript• NIST Atomic Clock Failure at Boulder CO Perfect for platform engineers, engineering leaders, and DevOps practitioners looking to level up their platform engineering skills. Episode URL: https://platformengineeringplaybook.com/podcasts/00071-platform-engineering-predictions-2026 Duration: 17 minutes Host: Jordan and Alex Category: TechnologySubcategory: Software How-To Keywords: platform engineering, 2026 predictions, IDP, AI operations, GitOps, policy-as-code

The best thing happening to Kubernetes in 2026 is that it's becoming boring. After a decade of explosive innovation, Kubernetes is entering its "mature infrastructure" phase - stable, predictable, and increasingly invisible. Like Linux and PostgreSQL before it, boring Kubernetes enables platform teams to build abstractions without worrying about breaking changes. Part of the Platform Engineering 2026 Look Forward Series. In this episode:- Boring infrastructure is mature infrastructure - Linux and PostgreSQL became boring, then conquered the world- K8s 1.32-1.35 pattern: incremental stability, small refinements, no paradigm shifts- Innovation is moving up the stack: kro, Crossplane, and composition tools building on stable K8s foundation- The "just use managed Kubernetes" consensus has won - EKS/GKE/AKS handle 90% of operational concerns Perfect for platform engineers, engineering leaders, and DevOps practitioners looking to level up their platform engineering skills. Episode URL: https://platformengineeringplaybook.com/podcasts/00070-kubernetes-boring-era-2026 Duration: 15 minutes Host: Jordan and Alex Category: TechnologySubcategory: Software How-To Keywords: Kubernetes, boring infrastructure, kro, Crossplane, platform engineering, EKS, GKE, AKS

DORA metrics revolutionized how we measure DevOps performance, but they have a critical blind spot: they tell you how your delivery pipeline is performing, but not how your people are doing. This episode explores the SPACE framework, DX Core 4, cognitive load measurement, and the HEART framework for platform teams. Part of the Platform Engineering 2026 Look Forward Series. In this episode:- DORA tells you the what but not the how or the at what cost - teams can hit every DORA metric while engineers burn out- SPACE framework: Satisfaction, Performance, Activity, Communication, and Efficiency - five dimensions of developer productivity- DX Core 4: Speed (diffs per engineer), Effectiveness (DXI survey), Quality (change failure rate), Impact (% time on new features)- Five-metric starter pack for 2026: Deployment Frequency, Lead Time, DXI Score, Time to First Deployment, % Time on New Features Perfect for platform engineers, engineering leaders, and DevOps practitioners looking to level up their platform engineering skills. Episode URL: Developer Experience Metrics Beyond DORA Duration: 14 minutes Host: Jordan and Alex Category: TechnologySubcategory: Software How-To Keywords: developer experience, DORA, metrics, SPACE framework, DX Core 4, cognitive load, platform engineering

Episode 2 of our 5-part "Platform Engineering 2026 Look Forward Series" examines the macro trend: platform engineering crossing the chasm to mainstream adoption. Gartner predicts 80% of software engineering organizations will have platform teams by 2026. The CNPE certification launched at KubeCon 2025. But there's a 56% talent gap and nearly half of initiatives run on under $1M annually. We address the "DevOps rebranding" debate with a 5-question litmus test:1. Do you have internal customers (developers)?2. Do you measure developer satisfaction?3. Do you have a product roadmap?4. Can developers self-serve without tickets?5. Do you deprecate platform features? Key statistics:- 55% adoption in 2025 (Google), projected 80% by 2026 (Gartner)- Average PE salary: $172k (range $143k-$201k)- 55% of platform teams are less than 2 years old- Team sizing benchmark: 3.5% to 19% of engineering headcount Platform engineering isn't just trendy - it's becoming table stakes. The question isn't IF you'll adopt it, but HOW WELL. #PlatformEngineering #DevOps #SRE #CloudNative #CNPE #InternalDeveloperPlatform #2026Predictions #Gartner

Episode 1 of our 5-part "Platform Engineering 2026 Look Forward Series" tackles the hottest debate in platform engineering: will AI agents replace us or amplify us? AWS Frontier Agents can reason across 30+ steps. The MLOps market hits $129 billion by 2028. Netflix AI triage cuts MTTR by 40%. But where are the hard limits? We introduce the 60/30/10 Framework:- 60% Delegate: Log analysis, runbook execution, cost optimization- 30% Augment: Incident response, capacity planning (AI suggests, human confirms)- 10% Guard: Architecture decisions, security posture, novel failures The key insight: the 20% AI can't do is 80% of the value. Five action items for 2026:1. Audit your runbooks for automation candidates2. Pilot AI agents on low-risk, high-volume tasks3. Build the guardrail muscle4. Invest in AI orchestration skills5. Track the last mile gap Platform engineering isn't becoming obsolete - it's evolving. The engineers who embrace AI agents will pull ahead of those who resist. https://platformengineering.org/podcasts/00067-agentic-ai-platform-operations-2026 #PlatformEngineering #AgenticAI #MLOps #DevOps #SRE #AWSFrontierAgents #CloudNative #2026Predictions

The CNPE (Certified Cloud Native Platform Engineer) exam launched November 11, 2025 at KubeCon Atlanta, becoming the first hands-on platform engineering certification in five years. This deep dive covers exam format, all five domains, and a complete study guide. Key Points:• CNPE is hands-on: 17 tasks in 2 hours, 64% pass score• Five domains: GitOps/CD (25%), Platform APIs (25%), Observability (20%), Architecture (15%), Security (15%)• BACK stack: Backstage, Argo CD, Crossplane, Kyverno• Golden Kubestronaut requires CNPE after March 2026• Career impact: Platform engineer salaries $160K-$220K Resources:• Episode page: https://platformengineering.org/podcasts/00066-cnpe-certification-study-guide• CNPE Exam: https://training.linuxfoundation.org/certification/certified-cloud-native-platform-engineer/• CNCF Platforms White Paper: https://tag-app-delivery.cncf.io/whitepapers/platforms/ #CNPE #PlatformEngineering #Kubernetes #CNCF #Certification #DevOps #CloudNative #ArgoCD #Crossplane #Backstage #Kyverno

Kubernetes 1.35 "Timbernetes" dropped on December 17, 2025, fundamentally changing how we operate clusters. This deep dive covers the 60 enhancements, 3 breaking changes that will bite you if unprepared, and in-place pod resize graduating to GA after six years of development. What You'll Learn:• Breaking Changes: cgroup v1 REMOVED (not deprecated), containerd 1.x EOL, IPVS deprecated• In-Place Pod Resize GA: Resize CPU/memory without pod restart - 6 years from KEP to stable• Pod Certificates Beta: Native kubelet-managed mTLS for zero-trust pod-to-pod auth• Gang Scheduling Alpha: Native all-or-nothing scheduling for AI/ML distributed training• Alpha Features: Node Declared Features, Partitionable Devices, Extended Toleration Operators• Practical Upgrade Checklist: What to audit and test before upgrading Resources:• Episode page: https://platformengineering.org/podcasts/00065-kubernetes-1-35-timbernetes-deep-dive• Kubernetes 1.35 Release Blog: https://kubernetes.io/blog/2025/12/17/kubernetes-v1-35-release/• KEP-1287 In-Place Resize: https://github.com/kubernetes/enhancements/issues/1287• KEP-4317 Pod Certificates: https://github.com/kubernetes/enhancements/issues/4317 #Kubernetes #K8s #PlatformEngineering #DevOps #CloudNative #Timbernetes #ContainerOrchestration #InPlaceResize #GangScheduling #AI #ML

No more copy-paste configs. No more manual state management. Terraform just went component-based. HashiCorp released native monorepo support and Terraform Stacks to GA on September 25, 2025. This is the biggest architectural shift since Terraform modules. Instead of directory-per-environment with duplicate configurations, you define components once and deploy multiple times with isolated state. We explain components (lifecycle-aware resource groups in .tfstack.hcl files), deployments (isolated instances with separate state), orchestration rules (context-aware automated approvals), linked stacks (declarative cross-stack dependencies), migration paths from Terragrunt, and when platform teams should adopt. NEWS SEGMENT:• Terraform Stacks + Monorepo (GA Sept 2025): Component-based architecture, orchestration rules, basic functionality in free tier  https://www.hashicorp.com/blog/terraform-adds-native-monorepo-support-stack-component-configurations-and-more • Pulumi IaC Including Terraform/HCL (Private Beta, GA Q1 2026): Direct Terraform state file support, native HCL, credits for HashiCorp costs  https://www.pulumi.com/blog/all-iac-including-terraform-and-hcl/ • vLLM v0.13.0: 442 commits from 207 contributors, NVIDIA Blackwell Ultra support, DeepSeek optimizations (5.3% throughput gains)  https://github.com/vllm-project/vllm/releases/tag/v0.13.0 • Amazon EC2 AZ ID API Support: Consistent Availability Zone IDs across all AWS accounts, eliminates manual zone mapping  https://aws.amazon.com/about-aws/whats-new/2025/12/amazon-ec2-availability-zone-id-api-support/ • GPT-5.2-Codex (Dec 18, 2025): 56.4% SWE-Bench Pro, 64% Terminal-Bench 2.0, invite-only cybersecurity capabilities  https://openai.com/index/gpt-5-2-codex/ LINKS:• Platform Engineering Playbook: https://platformengineeringplaybook.com• Episode Page: https://platformengineeringplaybook.com/podcasts/00064-terraform-stacks-native-monorepo• Full Script: https://github.com/platformengineeringorg/platform-engineering-playbook/blob/main/docs/podcasts/scripts/00064-terraform-stacks-native-monorepo.txt• Terraform Stacks Explained: https://www.hashicorp.com/blog/terraform-stacks-explained #terraform #terraformstacks #hashicorp #iac #infrastructureascode #platformengineering #devops #terragrunt #pulumi

Supply chain attacks cost $60 billion in 2025. Docker just made the solution free. On December 17, Docker released 1,000+ hardened container images under Apache 2.0—previously a paid offering. Independent penetration testing by SRLabs confirmed 95% CVE reduction and found NO root escapes or container breakouts. These images use distroless runtime: no shell, no package manager, no attack surface. We break down how distroless actually works (why removing /bin/sh matters), SLSA Level 3 cryptographic provenance, SBOM/VEX for killing alert fatigue, multi-stage build migration patterns, debugging without a shell (kubectl debug), and how Docker compares to Chainguard Wolfi, Google distroless, and Red Hat UBI. NEWS SEGMENT:• First Linux Kernel Rust CVE (CVE-2025-68260): Race condition in Android Binder's unsafe block. DoS only, no RCE. Greg Kroah-Hartman: "totally expected and normal."  https://www.phoronix.com/news/First-Linux-Rust-CVE • GitHub Actions 39% Price Cut: Self-hosted billing postponed indefinitely after backlash. 96% of customers unaffected.  https://resources.github.com/actions/2026-pricing-changes-for-github-actions/ LINKS:• Platform Engineering Playbook: https://platformengineeringplaybook.com• Episode Page: https://platformengineeringplaybook.com/podcasts/00063-docker-hardened-images-free-security• Full Script: https://github.com/platformengineeringorg/platform-engineering-playbook/blob/main/docs/podcasts/scripts/00063-docker-hardened-images-free-security.txt• Docker Blog: https://www.docker.com/blog/docker-hardened-images-for-every-developer/ #docker #containers #security #kubernetes #platformengineering #devops #supplychainsecurity #distroless #sbom #slsa

Kubernetes 1.35 is here, and it changes everything about pod lifecycle management. In this episode, we break down the release that finally lets you scale pods without restarting them. In This Episode:- In-Place Pod Vertical Scaling goes GA - adjust CPU/memory without pod restarts- Breaking changes: cgroup v1 removed, containerd 1.x EOL, IPVS deprecated- Pod Certificates (beta) for native workload identity without cert-manager- 60 enhancements: what matters for platform teams- Practical upgrade checklist and timing guidance News Segment:- Docker makes 1,000+ hardened container images free (95% CVE reduction)- GitHub Actions pricing changes (up to 39% reduction) coming January 2026- First Linux Kernel Rust CVE announced (CVE-2025-68260)- KubeVirt completes OSTIF security audit (15 findings, strong architecture) Resources:- K8s 1.35 Release: https://kubernetes.io/blog/2025/12/17/kubernetes-v1-35-release/- Full show notes: https://platformengineering.org/podcasts/00062-kubernetes-1-35-timbernetes Duration: ~15 minutesSpeakers: Jordan & Alex

Netflix reduced their deployment failures by 40,000x using Temporal. In this episode, we break down how they achieved this remarkable improvement and what it means for your platform engineering practice. In This Episode:- Netflix's deployment reliability problem: 4% failure rate from transient cloud operations- What is durable execution? Write code as if failures don't exist- Temporal vs AWS Step Functions vs Apache Airflow vs Cadence comparison- Netflix's Spinnaker/Clouddriver implementation with 2-hour fix-forward window- When Temporal is (and isn't) the right choice for your organization Key Stats:- Deployment failures: 4% → 0.0001% (40,000x improvement)- Temporal valuation: $2.5B with 183,000+ weekly active developers- 600% growth in developer adoption over 18 months Resources:- Netflix Tech Blog: https://netflixtechblog.com/how-temporal-powers-reliable-cloud-operations-at-netflix-73c69ccb5953- Temporal.io: https://temporal.io/- Full show notes: https://platformengineering.org/podcasts/00061-netflix-temporal-deployment-reliability

48% of Kubernetes users struggle with tool choice. That's nearly half of us paralyzed by options. So when AWS adopted kro alongside Argo CD, we had to ask: is this the Goldilocks solution we've been waiting for? In this episode, Jordan and Alex tackle the composition tool landscape with an honest decision framework. We dive deep into CEL expressions, resource graph mechanics, and GitOps integration. We also give Viktor Farcic's criticism a fair hearing, and explain exactly when kro makes sense - and when it doesn't. News Segment:• Shai-Hulud npm supply chain attack postmortem - 500+ packages, 25K repos• Ingress-nginx retirement - March 2026, 3 months away• Netflix Maestro 100x faster through full rewrite Main Topics:• The Goldilocks problem: Helm (too simple?), Crossplane (too complex?), kro (just right?)• CEL expressions deep dive: syntax, operators, and functions• Resource graph mechanics: topological sorting and dependency inference• GitOps integration: how kro works with Argo CD and Flux• Viktor Farcic's criticism and our honest response• Migration paths and real-world use cases Resources:• Episode page: https://platformengineering.org/podcasts/00060-kro-goldilocks-kubernetes-composition• kro GitHub: https://github.com/kubernetes-sigs/kro• CNCF Blog: https://www.cncf.io/blog/2025/12/15/building-platforms-using-kro-for-composition/• AWS EKS Capabilities: https://aws.amazon.com/blogs/aws/announcing-amazon-eks-capabilities-for-workload-orchestration-and-cloud-resource-management/• InfoQ Analysis (Viktor Farcic): https://www.infoq.com/news/2025/02/kube-resource-orchestrator/• Spectro Cloud 2024 Survey: https://www.spectrocloud.com/news/spectro-cloud-releases-2024-state-of-production-kubernetes News Segment Links:• Shai-Hulud npm Attack Postmortem: https://trigger.dev/blog/the-shai-hulud-2-0-attack-postmortem• Ingress-nginx Retirement: https://github.com/kubernetes/ingress-nginx/issues/12094• Netflix Maestro 100x Faster: https://netflixtechblog.com/maestro-netflixs-workflow-orchestrator-ee13a06f9c78 #kubernetes #platformengineering #kro #crossplane #helm #devops

2025 was the year platform engineering grew up—and got a reality check. AI entered infrastructure in ways we couldn't ignore. Industry consensus finally emerged on what platforms should actually do. And Cloudflare went down six times to remind us that concentration risk isn't just theoretical. In this special year-in-review episode, we look back at the ten stories that defined platform engineering in 2025: ✅ AI-native Kubernetes arrived (DRA GA, AI Conformance v1.0)✅ Platform engineering reached consensus—but 70% still fail✅ Infrastructure concentration risk became undeniable (AWS + Cloudflare)✅ IngressNightmare exposed 43% of cloud environments✅ Open source sustainability crisis (60% maintainers unpaid)✅ GPU waste: 13% average utilization = $4,350/month wasted per GPU✅ Service mesh sidecar era ended (Istio Ambient GA)✅ IaC consolidation (IBM + HashiCorp, CDKTF deprecated)✅ Gateway API became the standard✅ Agentic AI entered platform engineering Top 5 Takeaways for 2026:1. AI infrastructure is now standardized—architect to avoid lock-in2. Platform engineering has a definition—use it3. Concentration risk is real—multi-region, multi-cloud, multi-CDN4. Open source needs funding—$2K/dev/year recommendation5. GPU waste is the new cloud waste—DRA and time-slicing are table stakes Show notes: https://platformengineeringplaybook.io/podcasts/00059-platform-engineering-2025-year-in-review

In five years, Okta scaled Auth0's private cloud from 12 to 1,000+ Kubernetes clusters using ArgoCD. At KubeCon 2025, engineers Jérémy Albuixech and Kahou Lei shared their hard-won lessons. This episode breaks down the challenges, solutions, and practical wisdom for scaling GitOps to enterprise levels. Full episode page: https://platformengineeringplaybook.com/podcasts/00058-okta-gitops-argocd-1000-clusters In this episode, we cover:- The 83x scaling journey: from 12 clusters in 2020 to 1,000+ in 2025- Five major challenges at scale: controller degradation, centralized bottlenecks, application explosion, global latency, observability gaps- Five key solutions: controller sharding, ArgoCD Agent hub-spoke model, Application Sets templating, progressive rollouts, purpose-built observability- When to implement sharding (hint: 100+ clusters is the threshold)- The ArgoCD UI degradation wall at 1,000 applications- Six lessons learned including "GitOps doesn't solve organizational problems"- Practical guidance for teams at 10-50, 100-500, and 500+ cluster scales Plus news on Helm v4.0.4/v3.19.4 releases, Zero Trust in CI/CD Pipelines guide, 1 billion row migration without downtime, Microsoft Azure HorizonDB, and the Platform Engineering State 2026 report. Sources:- The New Stack: How Okta Scaled From 12 to 1000 Kubernetes Clusters With Argo CD- ITNEXT: How We Load Test Argo CD at Scale: 1,000 vClusters with GitOps- Red Hat: Multi-cluster GitOps with the Argo CD Agent- KubeCon + CloudNativeCon Atlanta 2025: "One Dozen To One Thousand Clusters" by Jérémy Albuixech and Kahou Lei #DevOps #PlatformEngineering #GitOps #ArgoCD #Kubernetes #MultiCluster #CNCF #KubeCon #CloudNative #SRE

Ninety percent of organizations now have platform teams, but most just renamed their ops team and expected different results. This episode breaks down the team sizes, reporting structures, and interaction patterns backed by DORA 2025 data that separate successful platform teams from glorified ticket handlers. Full episode page: https://platformengineeringplaybook.com/podcasts/00057-platform-engineering-team-structures In this episode, we cover:- DORA 2025 shows 90% of orgs have platforms, 76% have dedicated teams—when done right, 8% individual productivity boost and 10% team productivity boost- Optimal team size is 6-12 people (Spotify squads, Microsoft 5-9)—small enough for ownership, large enough for complete capabilities- Reporting structure matters: companies with 100+ engineers need dedicated platform leader to shield from competing priorities- Team Topologies interaction patterns: start Collaboration mode while building, evolve to X-as-a-Service when mature- Success metrics: self-service rate >90%, developer happiness tracking, DORA metrics for consuming teams- Anti-patterns to avoid: rebranding without role change, underinvestment after launch, skill concentration trap, Field of Dreams (building without validation) Plus news on Sim (Apache 2.0 n8n alternative), Docker Hub credential leaks (10K+ images exposed), Meta's BPF-LSM replacing SELinux, Litestream VFS for S3, GitHub login failures, and GPT-5.2 launch. Sources:- DORA 2025 Report: https://dora.dev/- Team Topologies: https://teamtopologies.com/- Spotify Engineering Culture: https://engineering.atspotify.com/- Backstage: https://backstage.io/ #DevOps #PlatformEngineering #TeamTopologies #DORA #EngineeringLeadership #DevEx #InternalDeveloperPlatform #SRE #CloudNative

HashiCorp (now IBM) has officially archived the CDK for Terraform project, ending a five-year experiment in programmatic infrastructure-as-code. Full episode page: https://platformengineeringplaybook.com/podcasts/00056-cdktf-deprecated-iac-migration In this episode, we break down:- Why CDKTF failed to find product-market fit (243K downloads vs Pulumi's 1.1M)- The four key factors behind the deprecation: Pulumi's head start, JSII complexity, HCL "good enough", IBM acquisition timing- Community reaction and the "rug pull" sentiment- Migration paths: HCL (cdktf synth --hcl), Pulumi, OpenTofu, or AWS CDK- What platform engineers should learn about vendor lock-in risk Plus news on Envoy CVE-2025-0913 (CVSS 8.6), Google's managed MCP servers, OpenTofu 1.11, pgAdmin 4 v9.11, Lima v2.0, and Amazon ECS custom stop signals. If you're on CDKTF, start your migration analysis this week. The programmatic IaC dream isn't dead—it just won't be at HashiCorp. Sources:- CDKTF Repository: https://github.com/hashicorp/terraform-cdk- Hacker News Discussion: https://news.ycombinator.com/item?id=42379268- Pulumi: https://www.pulumi.com/- OpenTofu: https://opentofu.org/ #DevOps #PlatformEngineering #InfrastructureAsCode #Terraform #CDKTF #Pulumi #OpenTofu #HashiCorp #IBM #CloudNative

🎧 AUDIODOCS: Official documentation of popular open-source projects, adapted and narrated for audio. Learn while commuting, exercising, or doing chores. Stop juggling terminal windows to tail Kubernetes logs. stern lets you tail multiple pods and containers simultaneously with regex queries, auto-detection of new pods, and color-coded output. This episode covers everything from basic usage to advanced templates and filtering. WHAT YOU'LL LEARN:00:00 - Introduction & The Problem stern Solves01:30 - Basic Usage: Regex and Resource Queries03:00 - Multi-Container Tailing & Filtering04:30 - Namespace, Label, and Node Filtering06:00 - Output Formatting & Custom Templates07:30 - Time-Based Filtering & Batch Mode08:45 - Configuration & Color Customization09:45 - Installation & Practical Tips10:30 - Summary & Key Takeaways LINKS:Full Transcript & Episode Page:https://platformengineeringplaybook.com/audiodocs/stern/v1.33.1 stern Official GitHub:https://github.com/stern/stern stern Releases:https://github.com/stern/stern/releases Platform Engineering Playbook:https://platformengineeringplaybook.com KEY TOPICS:- Multi-pod log tailing with regex queries- Resource queries (deployment/nginx, statefulset/db)- Container filtering (-c, -E flags)- Namespace and label selectors- Output templates (default, raw, json, custom Go)- Time filtering (--since, --timestamps)- Batch mode with --no-follow- Configuration file and color customization- fzf integration and shell completion ---📜 LICENSE & ATTRIBUTIONThis AudioDocs episode is a derivative work based on the official stern documentation.Original documentation: https://github.com/stern/sternLicense: Apache License 2.0 (https://www.apache.org/licenses/LICENSE-2.0)© stern contributors--- #stern #Kubernetes #DevOps #PlatformEngineering #CloudNative #SRE #AudioDocs #Logging #kubectl #Observability TAGS:stern, kubernetes logs, kubectl logs, multi-pod tailing, container logs, kubernetes debugging, log aggregation, devops tools, sre tools, platform engineering, cloud native, kubernetes observability, log streaming, audiodocs, listen to docs

🎧 AUDIODOCS: Official documentation of popular open-source projects, adapted and narrated for audio. Learn while commuting, exercising, or doing chores. Master CoreDNS, the default DNS server for Kubernetes clusters. This 72-minute episode covers the complete v1.13.1 documentation - from plugin architecture to production configuration. Every time a pod looks up a service, every time kubectl exec needs to find a pod - CoreDNS handles that resolution. If you're debugging DNS issues or optimizing cluster performance, this comprehensive audio guide has you covered. WHAT YOU'LL LEARN:00:00 - Introduction & Overview02:30 - Project Context: CNCF Graduation & Why CoreDNS Replaced kube-dns06:00 - Architecture: The Plugin "Lego Blocks" Model12:00 - Core Concepts: Server Blocks, Zones, Plugin Ordering18:00 - Installation: Kubernetes, Standalone, Docker, Package Managers24:00 - Corefile Configuration Mastery30:00 - Common Setups: Recursive Resolver, Authoritative DNS36:00 - kubernetes Plugin Deep Dive: Service Discovery & Pod Modes42:00 - forward Plugin: Upstream Servers, Health Checking, Policies48:00 - cache Plugin: TTL Handling, Prefetch, Denial Caching54:00 - file & hosts Plugins: Zone Files, /etc/hosts Style Records60:00 - errors, log, health & ready Plugins64:00 - prometheus Plugin: Metrics & Grafana Dashboards68:00 - rewrite & acl Plugins: Query Modification, Access Control72:00 - DNS Security: DNSSEC, DNS over TLS, DNS over HTTPS76:00 - Additional Plugins & Key Takeaways LINKS:Full Transcript & Episode Page:https://platformengineeringplaybook.com/audiodocs/coredns/v1.13.1 CoreDNS Official Website:https://coredns.io/ CoreDNS GitHub Repository:https://github.com/coredns/coredns CoreDNS Documentation:https://coredns.io/manual/toc/ CoreDNS Plugin Documentation:https://coredns.io/plugins/ CNCF Project Page:https://www.cncf.io/projects/coredns/ Platform Engineering Playbook:https://platformengineeringplaybook.com KEY TOPICS COVERED:- Plugin architecture & execution ordering- Corefile configuration syntax- Kubernetes service discovery (ClusterIP, headless services, endpoint slices)- DNS caching strategies & TTL management- Forwarding to upstream DNS servers- Health checks & readiness probes for Kubernetes- Prometheus metrics integration- Query rewriting & access control lists- DNS security: DNSSEC validation, DNS over TLS (port 853), DNS over HTTPS- Production best practices & testing configurations WHO THIS IS FOR:Platform engineers, SREs, and DevOps engineers who need to understand, configure, or troubleshoot Kubernetes DNS. Assumes familiarity with Kubernetes concepts. ---📜 LICENSE & ATTRIBUTIONThis AudioDocs episode is a derivative work based on the official CoreDNS documentation.Original documentation: https://coredns.io/manual/toc/License: Apache License 2.0 (https://github.com/coredns/coredns/blob/master/LICENSE)© CoreDNS Authors This audio transforms written documentation into educational audio format with proper attribution as required by the Apache 2.0 license.--- #CoreDNS #Kubernetes #DNS #CNCF #DevOps #PlatformEngineering #K8s #CloudNative #SRE #AudioDocs #KubernetesDNS #ServiceDiscovery TAGS:coredns, coredns tutorial, coredns kubernetes, kubernetes dns, k8s dns, coredns plugins, coredns configuration, corefile, coredns corefile, dns server kubernetes, kubernetes service discovery, coredns forward plugin, coredns cache, coredns prometheus, dns over tls kubernetes, dnssec kubernetes, coredns health check, cncf graduated project, cloud native dns, coredns troubleshooting, kubernetes networking, coredns v1.13.1, audiodocs, platform engineering

🎧 AUDIODOCS: Official documentation of popular open-source projects, adapted and narrated for audio. Learn while commuting, exercising, or doing chores. Stop typing long kubectl config commands! kubectx and kubens are essential CLI tools that let you switch Kubernetes contexts and namespaces instantly with tab completion and fuzzy search. This 10-minute episode covers everything you need to know about v0.9.5 - from installation to power-user workflows. If you work with multiple Kubernetes clusters, these tools will save you hours every week. WHAT YOU'LL LEARN:00:00 - The Problem: Why kubectl Context Switching is Painful01:30 - kubectx Basics: Instant Context Switching02:45 - The Dash Flag: Toggle Between Two Contexts03:30 - Context Renaming: Human-Readable Names04:30 - kubens: Namespace Switching Made Easy05:30 - The Force Flag: Non-Existent Namespaces06:00 - fzf Integration: Interactive Fuzzy Search07:00 - Installation: Homebrew, apt, Krew, Chocolatey08:00 - Shell Completion: bash, zsh, fish08:30 - Customization: Colors & Environment Variables09:00 - Workflow Tips: kube-ps1, Naming Conventions09:45 - Summary & Key Takeaways LINKS:Full Transcript & Episode Page:https://platformengineeringplaybook.com/audiodocs/kubectx/v0.9.5 kubectx GitHub Repository:https://github.com/ahmetb/kubectx fzf - Fuzzy Finder (Recommended):https://github.com/junegunn/fzf kube-ps1 - Prompt Integration:https://github.com/jonmosco/kube-ps1 kubectl Krew Plugin Manager:https://krew.sigs.k8s.io/ Platform Engineering Playbook:https://platformengineeringplaybook.com KEY FEATURES COVERED:- kubectx: List and switch contexts with a single command- kubens: Switch namespaces without verbose kubectl commands- Dash flag (-): Toggle back to previous context/namespace- Context renaming: kubectx prod=gke_project_region_cluster- fzf integration: Interactive fuzzy-search menu- Shell completion: Tab-complete context and namespace names- Force flag: Set namespace before it exists- NO_COLOR support: Disable colored output- KUBECTX_IGNORE_FZF: Disable fzf when needed INSTALLATION METHODS:- macOS/Linux: brew install kubectx- Debian/Ubuntu: sudo apt install kubectx- Arch Linux: sudo pacman -S kubectx- kubectl plugin: kubectl krew install ctx ns- Windows: choco install kubectx-ps, scoop install kubectx WHO THIS IS FOR:Anyone working with multiple Kubernetes clusters or namespaces. Perfect for platform engineers, SREs, and developers who want to eliminate kubectl config friction. ---📜 LICENSE & ATTRIBUTIONThis AudioDocs episode is a derivative work based on the official kubectx documentation.Original documentation: https://github.com/ahmetb/kubectxLicense: Apache License 2.0 (https://github.com/ahmetb/kubectx/blob/master/LICENSE)© Ahmet Alp Balkan This audio transforms written documentation into educational audio format with proper attribution as required by the Apache 2.0 license.--- #kubectx #kubens #Kubernetes #kubectl #DevOps #PlatformEngineering #K8s #CloudNative #SRE #CLI #AudioDocs #ProductivityTools #KubernetesTools TAGS:kubectx, kubens, kubernetes context, kubectl context switch, kubernetes namespace switch, k8s tools, kubernetes cli tools, kubectx tutorial, kubens tutorial, kubernetes productivity, fzf kubernetes, kubectl tips, kubernetes workflow, multi-cluster kubernetes, kubernetes context management, ahmetb kubectx, krew plugins, kubectl productivity, switch kubernetes cluster, kubernetes namespace, kubectx v0.9.5, audiodocs, platform engineering

Part 4 of 4 in our AWS re:Invent 2025 series (finale). The data and AI services that tie everything together. S3 Tables with Apache Iceberg hits GA with Intelligent-Tiering and cross-region replication. Aurora DSQL delivers distributed SQL with GPS atomic clocks. S3 Vectors supports 2 billion vectors at 90% lower cost. Clean Rooms ML enables privacy-enhanced synthetic datasets. Plus a comprehensive wrap-up connecting 50+ announcements across all four episodes. News: Envoy CVE-2025-0913, Rust in Linux kernel permanent, Let's Encrypt 10 years. In this episode:- S3 Tables GA with Intelligent-Tiering (80% cost savings) and automatic cross-region replication for Iceberg tables- Aurora DSQL uses GPS atomic clocks for global consistency, 4x faster than other distributed SQL, built 100% in Rust- S3 Vectors supports 2B vectors per index (40x preview increase), 90% cheaper than Pinecone/Weaviate/Qdrant- Clean Rooms ML generates privacy-enhanced synthetic datasets for collaborative ML without exposing raw data- Database Savings Plans: up to 35% savings, flexible across engines/regions, no Reserved Instance Tetris- Series wrap-up: 4 episodes, 50+ announcements, theme is "make infrastructure boring" 📰 News Segment Links:• NVD CVE Details  https://nvd.nist.gov/vuln/detail/CVE-2025-0913• Wiz Vulnerability Database  https://www.wiz.io/vulnerability-database/cve/cve-2025-0913• Envoy Releases (v1.34.12, v1.35.8, v1.33.14)  https://github.com/envoyproxy/envoy/releases• LWN.net Article  https://lwn.net/Articles/1049831/• Hacker News Discussion  https://news.ycombinator.com/item?id=46213585• Linux.org Thread  https://www.linux.org/threads/lwn-net-the-end-of-the-kernel-rust-experiment.59852/• ByteIOTA Coverage  https://byteiota.com/linux-kernel-rust-experiment-over/• Official Blog Post  https://letsencrypt.org/2025/12/09/10-years• Simon Willison Commentary  https://simonwillison.net/2025/Dec/10/lets-encrypt/• GIGAZINE Coverage  https://gigazine.net/gsc_news/en/20251210-letsencrypt-10-years/• EFF Celebration  https://www.eff.org/deeplinks/2023/08/celebrating-ten-years-encrypting-web-lets-encrypt• GitHub Status Page  https://www.githubstatus.com/• GitHub Status Incident History  https://www.githubstatus.com/history.rss• Amazon S3 Tables Replication  https://aws.amazon.com/about-aws/whats-new/2025/12/s3-tables-automatic-replication-apache-iceberg-tables/• Amazon S3 Expands Capabilities  https://press.aboutamazon.com/2024/12/amazon-s3-expands-capabilities-with-managed-apache-iceberg-tables-for-faster-data-lake-analytics-and-automatic-metadata-generation-to-simplify-data-discovery-and-understanding• Top AWS re:Invent 2025 Announcements  https://aws.amazon.com/blogs/aws/top-announcements-of-aws-reinvent-2025/• AWS re:Invent Recap  https://www.nops.io/blog/aws-reinvent-recap-2025/• TechCrunch Coverage  https://techcrunch.com/2024/12/03/aws-announces-aurora-dsql-a-new-distributed-sql-database-that-promises-virtually-unlimited-scalability/• AWS Press Release  https://press.aboutamazon.com/2024/12/aws-announces-new-database-capabilities-including-amazon-aurora-dsql-the-fastest-distributed-sql-database• Aurora DSQL GA Announcement  https://aws.amazon.com/blogs/aws/amazon-aurora-dsql-is-now-generally-available/• Werner Vogels Blog  https://www.allthingsdistributed.com/2025/05/just-make-it-scale-an-aurora-dsql-story.html• InfoQ Coverage (Preview)  https://www.infoq.com/news/2024/12/amazon-aurora-dsql/• InfoQ Coverage (GA)  https://www.infoq.com/news/2025/06/amazon-aurora-dsql-ga/• AWSInsider  https://awsinsider.net/articles/2025/06/09/amazon-aurora-dsql-now-generally-available-serverless-and-distributed.aspx• AWS Glue Zero-ETL  https://aws.amazon.com/about-aws/whats-new/2025/11/glue-zero-etl-selfmanaged/• The Register (2022 announcement)  https://www.theregister.com/2022/11/29/aws_selipsky_reinvent_keynote/• Cloud Data Insights  https://www.clouddatainsights.com/aws-eyes-a-zero-etl-future-with-newly-announced-capabilities/• S3 Vectors GA Blog Post