Authors: Tim Allclair (Google), Sam Stoelinga
(Google) The release of Kubernetes v1.25 marks a major milestone
for Kubernetes out-of-the-box pod security controls:Pod Security
admission (PSA) graduated to stable, and Pod Security Policy (PSP)
has been removed.PSP was deprecated in Kubernetes v1.21, and no
longer functions in Kubernetes v1.25 and later. The Pod Security
admission controller replaces PodSecurityPolicy, making it easier
to enforce predefined Pod Security Standards by simply adding a label
to a namespace.The Pod Security Standards are maintained by the K8s
community, which means you automatically
Author: Mahé Tardy (Quarkslab) The
PodSecurityPolicy (PSP) admission controller has been removed, as
of Kubernetes v1.25.Its deprecation was announced and detailed in
the blog post PodSecurityPolicy Deprecation:Past, Present, and
Future, published for the Kubernetes v1.21 release. This
article aims to provide historical context on the birth and
evolution of PSP, explain why the feature never made it to stable,
and show why it was removed and replaced by Pod Security admission
control. PodSecurityPolicy, like other specialized admission
control plugins, provided fine-grained permissions on specific
fields concerning the pod
Authors:Kubernetes 1.25 Release Team Announcing the
release of Kubernetes v1.25! This release includes a total of 40
enhancements.Fifteen of those enhancements are entering Alpha, ten
are graduating to Beta, and thirteen are graduating to Stable.We
also have two features being deprecated or removed.
Release theme and logo
Kubernetes 1.25:Combiner
The theme for Kubernetes v1.25 is Combiner.
Author:Frederico Muñoz (SAS) Since the very
beginning of Kubernetes, the topic of persistent data and how to
address the requirement of stateful applications has been an
important topic.Support for stateless deployments was natural,
present from the start, and garnered attention, becoming very
well-known.Work on better support for stateful applications was
also present from early on, with each release increasing the scope
of what could be run on Kubernetes. Message queues, databases,
clustered filesystems:these are some examples of the solutions that
have different storage
Author:Craig Box (Google) The Kubernetes project
has participants from all around the globe.Some are friends, some
are colleagues, and some are strangers.The one thing that unifies
them, no matter their differences, are that they all have an
interesting story.It is my pleasure to be the documentarian for the
stories of the Kubernetes community in the weekly Kubernetes
Podcast from Google.With every new Kubernetes release comes an
interview with the release team lead, telling the story of that
release, but also their
